Thought I'd share a bit of my experience, since I had a hard time figuring it out, hope it is useful to someone:
Just to let everyone know how the h323 proxy should work, even though in my case I have not been able to get anything to work as the VOIP clients we use, establish a connection via different protocol SCCP (although H323 is also used), which is rather frustrating, as I only realised after a bit of time.... aghhhh To get it to work , once the h323 proxy has been compiled into your version of ipfilter, all you should have to do is setup a rule such as the following in your ipnat.rules file: map lnc0 0.0.0.0/0 -> 192.168.1.2/32 proxy port 1720 h323/tcp When a H.323 client tries to connect through the ipnat gateway, port 1720 is used to setup the communication, and the h323 proxy recovers the right information from packets exchanged, to be able to create dynamic rules to allow the UDP audio traffic to pass. On closing the VOIP connection, the h323 clients should communicate through port 1720 again (not sure if this) and the h323 proxy should detect termination of the call and remove the dynamic rules. If you run ipnat -ls while a h323 client is trying to establish a connection through your ipnat gateway, you should be able to see these dynamic rules. All really simple at the end with a bit of help..... Ciao Rekkie _______________________________________________ Join Excite! - http://www.excite.com The most personalized portal on the Web!
