Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 6025 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Zoom On Premise

Sophos User2506

I have setup a virtual server for Zoom OnPrem in order to improve Zoom meetings. Inside the agency it works great, however; whenever we try and have a user connect from outside to our OnPrem server it never completes. I have setup the Zoom Meeting connector according to their documentation. I am just questioning my port forwarding settings. 

 

Rule type: DNAT

Matching Conditions

For traffic from: External IP address assigned to meeting connector

Using services: 9001 TCP/UDP

Going to: External (WAN  ADDRESS)

 

Action

Change the destination to: ZoomOnPremZC

And the service to: 8802 TCP/UDP

 

Their instructions:

One Meeting Connector Controller (350 Participants)

Example network information:

  • External IP address assigned to Meeting Connector: 173.288.57.201
  • Internal IP address for ZC: 10.100.124.238

Example Firewall Setup:

  • Forward 173.228.57.201 TCP/UDP 9001 > 10.100.124.238 TCP/UDP 8802

Deleted redundant.



This thread was automatically locked due to age.
Parents
  • 0

    Hi and welcome to the UTM Community!

    Please show a picture of the Edit of the DNAT with the 9001 and 8802 services open.  What if you make UDP 9001 and 8802 and TCP 9001 and 8802 and then put the TCP ports in one DNAT and the UDP ports in another?

    What/where is "External IP address assigned to meeting connector"?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Changed the settings per recommendation and it still won't allow iPad to connect from the outside. All I get is connecting than it times out. 

    I cannot do a dump on the Zoom server.

     

    Put in official ticket will Sophos. Will let you know the outcomes. Until then thank you for the help.

  • 0 in reply to Sophos User2506

    OH - I think I see the problem.  The "ZoomMeetingConnectorControllerPortForwarding" needs to be an Additional IP on the External interface, so your Traffic Selector should be, for example:

    Internet IPv4 -> Zoom9001 -> External [ZoomMeetingConnectorControllerPortForwarding] (Address)

    Or, if the IP is the same as "External (WAN) (Address)"

    Internet IPv4 -> Zoom9001 -> External (WAN) (Address)

    Your TCPUDP definitions might work there.  Please let us know if they do.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to Sophos User2506

    Hello Sophos User2506,

    As Bob mentioned it seems like you need an Additional IP for the Meeting Connector.

    Please share the Case ID so I can also follow up internally.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Reply Children
No Data
Unfiltered HTML