Firewall Notes
- If the source device’s port is auto-assigned, the firewall at the source must have an outbound NAT rule for [source port] set to “any”.
- If the source device’s port is specified, then the same value should be used in the outbound NAT rule.
- If a destination firewall has a filtering rule that matches a source port with a source IP, you must disable outbound port rewrite on the source firewall. Disabling this option allows the source firewall to map any port from the SRT source device to a unique, predefined port after the NAT rules have been applied.
- Depending on your firewall, the NAT rules may be applied before or after the packet filtering rules. This will affect the filtering rule definition. If the NAT rules are applied before, you have to specify the firewall’s internal IP address. If the NAT rules are applied after, you have to specify the firewall’s public IP address.
Important
Point-to-point sessions through firewalls can be done in reverse, with the SRT source device in Listener mode and the SRT destination device in Caller mode.