RE: Skype?
- From: "John Tolmachoff \(Lists\)" <johnlist@xxxxxxxxxxxxxxxxxxx>
- To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
- Date: Fri, 12 Sep 2003 12:18:32 -0700
> I just downloaded Skype and have been playing with it-- it's a pretty
slick
> P2P VoIP tool. It works great when my laptop is plugged straight into the
> DSL modem, but something it does makes ISA have heartburn. Their FAQ
> (http://www.skype.net/help_faq.html) says that you need outbound TCP 80
open
> (already done), plus send->receive on the high UDP ports. However, that
> wasn't enough to allow me to sign up for an account, much less use the
> service. Has anyone figured out exactly which ports have to be open?
Any software that requires a range of ports to be open incoming and outgoing
has no place in a business environment, unless they work with the firewall
vendors so they can be configured for application layer filtering.
However, this is from there website:
"I can't connect to Skype from work or due to a restrictive firewall. Which
ports need to be opened in order to use Skype?
The Minimum requirement is to open up outgoing TCP port 80. In order to
achieve the best quality, also open up outgoing UDP for all ports in
stateful mode, so that replies to sent UDP packets are let in."
That means they are not asking for incoming ports to be left open. Good.
However, they are asking for all outgoing UDP ports to be open. Bad, sort
of. Depends on your security policy.
"Which protocols does Skype use?
Skype uses a proprietary protocol which we have developed. We looked at many
available protocols when designing Skype and none were good enough for us.
We hope you agree!"
Now, if they feel that strongly about their product, why not work with MS or
other firewall vendors to get their protocol configured and added to
firewalls. That would make it easy to work with.
John Tolmachoff MCSE CSSA
Engineer/Consultant
eServices For You
www.eservicesforyou.com
Other related posts:
