TITLE
    Mac OS X Server: Creating a QuickTime Server Firewall
Article ID:
Created:
Modified: 		60148
3/16/99
9/2/99
TOPIC

    I am firewalling a QuickTime server with Cisco access control lists. What rules do I need beyond:

    !inbound
    access-list 101 permit tcp any host qtserver eq 554
    !outbound
    access-list 102 permit tcp host qtserver eq 554 any established

DISCUSSION

    Inbound and outbound UDP for the data traffic. Each track in a movie uses a pair of UDP ports (even/odd number). The RTP traffic flows on the even port, from server to client (no back traffic). RTCP traffic flows on the odd port, both ways. QuickTime uses ports 6970 and up on the client side, servers vary widely. Opening, say, 30 ports here should allow any client to view several movies and not run out.

Document Information
Product Area: Mac OS System Software
Category: Mac OS X Server
Sub Category: QuickTime Streaming

Copyright © 2000 Apple Computer, Inc. All rights reserved.