Chapter 7 Firewall for FortiOS 5.0 : Firewall objects : Example Scenario: Using FortiGate services to support Audio/Visual Conferencing : Configuring the services : Custom Services that need to be created:
  
Custom Services that need to be created:
There are a number of possible services that may need to be added from scratch rather than editing existing ones. While it is possible to create a single custom service that contains all of the open ports needed, it make more sense to make this modular in case only a small subset of the service needs to be added to another policy.
Polycom API
Go to Firewall Objects -> Service -> Services
Create New
Fill in the fields of the new service with the following information:
Name
Polycom API
Service Type
Firewall
Category
VoIP, Messaging & Other
Protocol Type
TCP/UDP/SCTP
Protocol
TCP/UDP/SCTP
Protocol
TCP
Destination Port - Low:
24
Destination Port - High:
<leave blank>
Select OK
Polycom Endpoints
Go to Firewall Objects -> Service -> Services
Create New
Fill in the fields of the new service with the following information:
Name
Polycom Endpoints
Service Type
Firewall
Category
VoIP, Messaging & Other
Protocol Type
TCP/UDP/SCTP
Protocol
TCP
Destination - Low:
3230
Destination - High:
3253
Select OK
Other Services to add in the same way:
Table 49:  
Name of Service
Category
Protocol & Port #
LDAP secure communications
Authentication
TCP 636
Win 2000 ILS Registration
Network Services
TCP 1002
Gatekeeper discovery
VoIP, Messaging & Other Applications
TCP 1718
Audio Call Control
VoIP, Messaging & Other Applications
TCP 1731
Polycom proprietary Global directory data
VoIP, Messaging & Other Applications
TCP 3601
Polycom People+Content
VoIP, Messaging & Other Applications
TCP 5001
HTTP Server Push
Web Access
TCP 8080