Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Thomas_Dunlap
Participant

Building NAT for Zoom Room Connection

Zoom has a large number of servers to support the Zoom room connection to interface with Cisco VTC. What is the easiest way to make a secure NAT

TCP

 

443
3000-4000
5060-5061

 

UDP

 

3000-4000
5060
9000-10000

 

These protocols will be made into a custom service. 

For the servers is it possible to set a wildcard value like @.zoom.us as the source value in the NAT definition?

 

Sample

3.7.35.0/25
3.21.137.128/25
3.22.11.0/24
3.23.93.0/24
3.25.41.128/25
3.25.42.0/25
3.25.49.0/24
3.80.20.128/25
3.96.19.0/24
3.101.32.128/25
3.101.52.0/25
3.104.34.128/25
3.120.121.0/25
3.127.194.128/

Many more

 

Thanks 

0 Kudos
3 Replies
Chris_Atkinson
Employee
Employee

Is the device a locally or centrally managed 1500 series (Refer: sk159772) or another model and what are the versions of gateway/management involved? 

 

sk163633: Updatable Objects for Zoom Services 

0 Kudos
Thomas_Dunlap
Participant

These are CP730 devices.  Low end . Locally managed. Version: R77.20.87 (990173004).

I have a feeling that the devices are not able to use this sk.  

I have made the Zoom_Room Service that consists of all the TCP and UDP ports required for the Zoom Cloud Room Connector.

Is there an alternative method to make this work on a CP730?

I have an old 1430 Appliance 

Check Point
1430 Appliance Version: R77.20.86 (990172855)

Any chance this could be used?

0 Kudos
Chris_Atkinson
Employee
Employee

Manual effort will be necessary here.

Unfortunately updatable objects are only  available in R80.20 and above per https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

Specifically their use with NAT is only recently possible with R81.

 

 

0 Kudos