D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: Sultan on February 15, 2012, 12:55:20 PM

Title: how to enable rtsp protocol on DFL-860e
Post by: Sultan on February 15, 2012, 12:55:20 PM

Hi everybody

I can't watch or download any of youtube videos in my phone or other phones in our company network
every streaming media is blocker when i connect to the wireless modem directly, I can access everything
any idea please

Title: Re: how to enable rtsp protocol on DFL-860e
Post by: danilovav on February 16, 2012, 12:22:09 PM

Do you use HTTP ALG?
Show your rules as screens

Title: Re: how to enable rtsp protocol on DFL-860e
Post by: Sultan on February 17, 2012, 08:25:54 AM

no i didn't use ALG in
12  allow_ping-outbound  NAT  lan  lannetAddress: 192.168.0.0/24  wans all-netsAddress: 0.0.0.0/0  ping-outbound
3  allow-dns  NAT  lan  lannetAddress: 192.168.0.0/24  wans all-netsAddress: 0.0.0.0/0  dns-allDestination ports: 53
4  allow-http-all  NAT  lan  lannetAddress: 192.168.0.0/24  wans  all-netsAddress: 0.0.0.0/0  http-allDestination ports: 0-65535
5  allow_ftp-passthrough  NAT  lan  lan-authAddress: 192.168.0.0/24  wans  all-netsAddress: 0.0.0.0/0  ftp-passthroughDestination ports: 21
6  allow_standard  NAT  lan  lan-authAddress: 192.168.0.0/24  wans  all-netsAddress: 0.0.0.0/0  all_tcpudpDestination ports: 0-65535
7  allow-httpauth  Allow  lan  lannetAddress: 192.168.0.0/24  core  lan_ipAddress: 192.168.0.2  http-allDestination ports: 0-65535
8  allow-httpauth  SAT  lan  lannetAddress: 192.168.0.0/24  wans  all-netsAddress: 0.0.0.0/0  http-allDestination ports: 0-65535
9  allow-httpauth  Allow  lan  lannetAddress: 192.168.0.0/24  wans  all-netsAddress: 0.0.0.0/0  http-allDestination ports: 0-65535
10  reject_all  Reject  lan  lannetAddress: 192.168.0.0/24  wans  all-netsAddress: 0.0.0.0/0  all_services

Title: Re: how to enable rtsp protocol on DFL-860e
Post by: danilovav on February 18, 2012, 07:28:48 PM

Your rule "4  allow-http-all" makes access to internet possible without authorization. Try to disable it

Anyway, your "6  allow_standard" rule covers RTSP (TCP/UDP 554), so it seems very strange

Try to capture session via pcapdump utility in DFL's CLI and analyze what happened

Title: Re: how to enable rtsp protocol on DFL-860e
Post by: Sultan on February 20, 2012, 02:27:41 PM

thank you for reply danilovav
when I connect the mobile to the internet i get logging message


2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=141 udptotlen=141 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=476 udptotlen=476 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=135 udptotlen=135 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=123 udptotlen=123 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=504 udptotlen=504 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=127 udptotlen=127 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=519 udptotlen=519 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=127 udptotlen=127 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=528 udptotlen=528 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=130 udptotlen=130 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=510 udptotlen=510 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=122 udptotlen=122 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=133 udptotlen=133 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=395 udptotlen=395 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=142 udptotlen=142 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=146 udptotlen=146 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=448 udptotlen=448 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=143 udptotlen=143 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=141 udptotlen=141 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13844 ruleset_drop_packet
drop
ipdatalen=425 udptotlen=425 
2012-02-20
18:05:37 Warning RULE
6000051 Default_Rule UDP wan1
 74.125.212.80
192.168.3.2 10580
13846 ruleset_drop_packet
drop
ipdatalen=146 udptotlen=146 


please can you check it for me because I don't understand it

Title: Re: how to enable rtsp protocol on DFL-860e
Post by: danilovav on February 24, 2012, 11:22:06 AM

Do you have any setting on RSTP software regarding port 10580 ?
Try to make port mapping (SAT+Allow) for this port to internal machine with RSTP