Firewall Rules 68p09287a58

PoC Firewall Rules
68P09287A58-A
2007 Motorola, Inc.
JUL 2007
All Rights Reserved
Accuracy
While reasonable efforts have been made to assure the accuracy of this document, Motorola, Inc. assumes no
liability resulting from any inaccuracies or omissions in this document, or from use of the information obtained
herein. Motorola, Inc. reserves the right to make changes to any products described herein to improve reliability,
function, or design, and reserves the right to revise this document and to make changes from time to time in content
hereof with no obligation to notify any person of revisions or changes. Motorola, Inc. does not assume any liability
arising out of the application or use of any product, software, or circuit described herein; neither does it convey
license under its patent rights or the rights of others. It is possible that this publication may contain references to, or
information about Motorola products (machines and programs), programming, or services that are not announced
in your country. Such references or information must not be construed to mean that Motorola intends to announce
such Motorola products, programming, or services in your country.
Copyrights
This document, Motorola products, and 3rd Party Software products described in this document may include
or describe copyrighted Motorola and other 3rd Party supplied computer programs stored in semiconductor
memories or other media. Laws in the United States and other countries preserve for Motorola, its licensors, and
other 3rd Party supplied software certain exclusive rights for copyrighted material, including the exclusive right
to copy, reproduce in any form, distribute and make derivative works of the copyrighted material. Accordingly,
any copyrighted material of Motorola, its licensors, or the 3rd Party software supplied material contained in the
Motorola products described in this document may not be copied, reproduced, reverse engineered, distributed,
merged or modied in any manner without the express written permission of Motorola. Furthermore, the purchase
of Motorola products shall not be deemed to grant either directly or by implication, estoppel, or otherwise, any
license under the copyrights, patents or patent applications of Motorola or other 3rd Party supplied software,
except for the normal non-exclusive, royalty free license to use that arises by operation of law in the sale of a
product.
A list of 3rd Party supplied software copyrights are contained in the Supplemental information section of this
document.
Restrictions
Software and documentation are copyrighted materials. Making unauthorized copies is prohibited by law. No part
of the software or documentation may be reproduced, transmitted, transcribed, stored in a retrieval system, or
translated into any language or computer language, in any form or by any means, without prior written permission
of Motorola, Inc.
License Agreements
The software described in this document is the property of Motorola, Inc and its licensors. It is furnished by express
license agreement only and may be used only in accordance with the terms of such an agreement.
High Risk Materials
Components, units, or 3rd Party products used in the product described herein are NOT fault-tolerant and are NOT
designed, manufactured, or intended for use as on-line control equipment in the following hazardous environments
requiring fail-safe controls: the operation of Nuclear Facilities, Aircraft Navigation or Aircraft Communication
Systems, Air Trafc Control, Life Support, or Weapons Systems (High Risk Activities). Motorola and its supplier(s)
specically disclaim any expressed or implied warranty of tness for such High Risk Activities.
Trademarks
Motorola and the Stylized M Logo are registered in the US Patent & Trademark Ofce. All other product or service
names are the property of their respective owners.
The CE mark conrms Motorola, Inc. statement of compliance with EU directives applicable to this product. Copies
of the Declaration of Compliance and installation information in accordance with the requirements of EN50385 can
be obtained from the local Motorola representative or by contacting the Customer Network Resolution Center
(CNRC). The 24 hour telephone numbers are listed at https://mynetworksupport.motorola.com. Select Customer
Network Resolution Center contact information. Alternatively if you do not have access to CNRC or the
internet, contact the Local Motorola Ofce.
JUL 2007
Table
of
Contents
Contents
PoC Firewall Rules

Revision history . . . . . . . . . . . . . . . . . . . . . . . . . .
Version information . . . . . . . . . . . . . . . . . . . . . .
General information . . . . . . . . . . . . . . . . . . . . . . . .
Purpose . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Cross references . . . . . . . . . . . . . . . . . . . . . . . .
Text conventions . . . . . . . . . . . . . . . . . . . . . . . .
Contacting Motorola . . . . . . . . . . . . . . . . . . . . . . . .
Errors . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Questions and comments . . . . . . . . . . . . . . . . . . .
24 hour support . . . . . . . . . . . . . . . . . . . . . . . .
Security Advice . . . . . . . . . . . . . . . . . . . . . . . . . .
Warnings and cautions . . . . . . . . . . . . . . . . . . . . . . .
Failure to comply with warnings . . . . . . . . . . . . . . . .
Warnings. . . . . . . . . . . . . . . . . . . . . . . . . . . .
Cautions . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
General Safety . . . . . . . . . . . . . . . . . . . . . . . . . . .
Ground the equipment . . . . . . . . . . . . . . . . . . . . .
Do not operate in an explosive atmosphere . . . . . . . . . .
Keep away from live circuits . . . . . . . . . . . . . . . . . .
Do not service or adjust alone . . . . . . . . . . . . . . . . .
Use caution when exposing or handling the CRT. . . . . . . .
Do not substitute parts or modify equipment . . . . . . . . .
Potentially hazardous procedure warnings. . . . . . . . . . .
Devices sensitive to static . . . . . . . . . . . . . . . . . . . . .
Special handling techniques . . . . . . . . . . . . . . . . . .
Caring for the environment . . . . . . . . . . . . . . . . . . . .
Disposal of Motorola Networks equipment in EU countries . .
Disposal of Motorola Networks equipment in non-EU countries
Motorola document set . . . . . . . . . . . . . . . . . . . . . .
Ordering documents and CD-ROMs . . . . . . . . . . . . . .
Document banner denitions . . . . . . . . . . . . . . . . .
Third Party Computer Software and Trademarks . . . . . . . . .
Computer Software . . . . . . . . . . . . . . . . . . . . . .
Trademarks . . . . . . . . . . . . . . . . . . . . . . . . . .
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
2
2
3
3
3
3
5
5
5
5
6
7
7
7
7
8
9
9
9
9
9
10
10
10
11
11
12
12
12
13
13
13
14
14
15
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
1-2
1-3
1-4
1-5
Chapter 1: Handset, CS, AD, and Web server interface rules

CS and handset interface . . .
CS and AD interface . . . . . .
Web server and AD interface . .
CS to Prepaid Mediation Server
68P09287A58-A
JUL 2007
. . . . .
. . . . .
. . . . .
Interface
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
Contents
OAMP Trafc (NMHOST) . . . . . . . .

Multi AD interface . . . . . . . . . . . .
Network to Network Interface . . . . . .
SIP Trafc . . . . . . . . . . . . . .
Media trafc . . . . . . . . . . . . .
IMS to PoC Application Server Interface .
IMS to PoC CS . . . . . . . . . . . .
IMS to PoC AD . . . . . . . . . . . .
HS to XDMS interface . . . . . . . . . .
CS to CS (IPMH Sigcomp) . . . . . . . .
CS to GAMA . . . . . . . . . . . . . . .
DNS to CS/AD/PM Server . . . . . . . .
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
1-7
1-11
1-13
1-13
1-13
1-15
1-15
1-15
1-17
1-18
1-19
1-20
Appendix A: Acronyms and Abbreviations
ii
68P09287A58-A
JUL 2007
List
of
Tables
List of Tables
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
Table
1-1: CS to handset interface rules . . . . . . . . . . . . . . . . . . . . . . . .

1-2: CS to AD interface rules . . . . . . . . . . . . . . . . . . . . . . . . . .
1-3: Web server to AD interface rules . . . . . . . . . . . . . . . . . . . . . .
1-4: CS to Prepaid Mediation Server Interface Rules . . . . . . . . . . . . . .
1-5: CS to Prepaid Mediation Server Interface Rules continued . . . . . . . . .
1-6: Web Browser to CS/AD server . . . . . . . . . . . . . . . . . . . . . . .
1-7: Subscriber or enterprise admin Web server to AD . . . . . . . . . . . . .
1-8: MTAS client to MTAS interface on the AD. . . . . . . . . . . . . . . . . .
1-9: Operator SNMP manager and the SNMP interface of AD/CS/Web Server .
1-10: Operators SNMP Manager and the SNMP interface of AD/CS/ WebServer.
1-11: FTP / SFTP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-12: Telnet / SSH . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-13: SMTP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-14: NTP Sync . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-15: NMS Sync . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-16: XML API to Web Server . . . . . . . . . . . . . . . . . . . . . . . . . .
1-17: AD1 IPMH to AD2 IPMH Interface. . . . . . . . . . . . . . . . . . . . .
1-18: AD2 IPMH to AD1 IPMH Interface. . . . . . . . . . . . . . . . . . . . .
1-19: NMS Sync . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-20: CS IPMH IP to NNI IP . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-21: NNI IP to CS IPMH IP interface . . . . . . . . . . . . . . . . . . . . . .
1-22: CS MRS to NNI Media . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-23: CS MRS to NNI Handsets . . . . . . . . . . . . . . . . . . . . . . . . .
1-24: IMS to PoC CS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-25: PoC CS to IMS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-26: IMS to PoC AD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-27: PoC AD to IMS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-28: HS to XDMS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-29: XDMS to HS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-30: OCS to TCS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-31: TCS to OCS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-32: CS to Diameter server . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-33: Diameter server to CS . . . . . . . . . . . . . . . . . . . . . . . . . .
1-34: DNS server to CS/AD/PM server . . . . . . . . . . . . . . . . . . . . . .
1-35: DNS server to AD/CS/PM server . . . . . . . . . . . . . . . . . . . . . .
68P09287A58-A
JUL 2007
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
1-2
1-3
1-4
1-5
1-6
1-7
1-7
1-7
1-8
1-8
1-8
1-9
1-9
1-9
1-10
1-10
1-11
1-11
1-12
1-13
1-13
1-14
1-14
1-15
1-15
1-16
1-16
1-17
1-17
1-18
1-18
1-19
1-19
1-20
1-20
iii
List of Tables
iv
68P09287A58-A
JUL 2007
About
This
Manual
PoC Firewall Rules
This document covers the Motorola PoC IP network and provides guidance for the eld engineer,
who implements the IP interface between the CS, AD and the customer network.
68P09287A58-A
JUL 2007
Revision history
Revision history
The following shows the status of this document since it was released.
Version information
Document issue
Date of issue
JUL 2007
Remarks
Initial Release
68P09287A58-A
JUL 2007
General information
General information
Motorola disclaims all liability whatsoever, implied or express, for any risk of damage,
loss or reduction in system performance arising directly or indirectly out of the
failure of the customer, or anyone acting on the customers behalf, to abide by the
instructions, system parameters or recommendations made in this document.
Purpose
Motorola cellular communications documents are intended to instruct and assist personnel in
the operation, installation and maintenance of the Motorola cellular infrastructure equipment
and ancillary devices. It is recommended that all personnel engaged in such activities be
properly trained by Motorola.
Failure to comply with Motorolas operation, installation and maintenance instructions

may, in exceptional circumstances, lead to serious injury or death.
These documents are not intended to replace the system and equipment training offered by
Motorola, although they can be used to supplement and enhance the knowledge gained through
such training.
Cross references
Throughout this document, references are made to external publications, chapter numbers
and section names. The references to external publications are shown in italics. Chapter and
section name cross references are emphasized in blue text in electronic versions. These are
active links to the references.
This document is divided into uniquely identied and numbered chapters that, in turn, are
divided into sections. Sections are not numbered, but are individually named at the top of each
page, and are listed in the table of contents.
Text conventions
The following conventions are used in the Motorola cellular infrastructure documents to
represent keyboard input text, screen output text and special key sequences.
68P09287A58-A
JUL 2007
General information
Input
Characters typed in at the keyboard are shown like this.
Output
Messages, prompts, file listings, directories, utilities, and environmental
variables that appear on the screen are shown like this.
Special key sequences

Special key sequences are represented as follows:
CTRL-c
Press the Control and c keys at the same time.
ALT-f
Press the Alt and f keys at the same time.
Press the pipe symbol key.
CR or RETURN
Press the Return key.
68P09287A58-A
JUL 2007
Contacting Motorola
Contacting Motorola
Motorola appreciates feedback from the users of our documents.
Errors
To report a documentation error, call the CNRC (Customer Network Resolution Center) and
provide the following information to enable CNRC to open an SR (Service Request):
The document type
The document title, part number, and revision character
The page number(s) with the error
A detailed description of the error and if possible the proposed solution
Questions and comments

Send questions and comments regarding user documentation to the email address below:
mydocs@motorola.com
24 hour support
If you have problems regarding the operation of your equipment, please contact the Customer
Network Resolution Center (CNRC) for immediate assistance. The 24 hour telephone numbers
are listed at https://mynetworksupport.motorola.com. Select Customer Network Resolution
Center contact information. For additional CNRC contact information, contact your Motorola
account representative.
68P09287A58-A
JUL 2007
Security Advice
Security Advice
Motorola systems and equipment provide congurable security parameters to be set by the
operator based on their particular operating environment. Motorola recommends setting and
using these parameters following industry recognized security practices. Security aspects
to be considered are protecting the condentiality, integrity, and availability of information
and assets. Assets include the ability to communicate, information about the nature of the
communications, and information about the parties involved.
In certain instances Motorola makes specic recommendations regarding security practices,
however the implementation of these recommendations and nal responsibility for the security
of the system lies with the operator of the system.
Please contact the Customer Network Resolution Center (CNRC) for assistance. The 24 hour
telephone numbers are listed at https://mynetworksupport.motorola.com/. Select Customer
Network Resolution Center contact information, from the menu located to the left of the
Login box. Alternatively if you do not have access to CNRC or the internet, contact the Local
Motorola Ofce.
68P09287A58-A
JUL 2007
Warnings and cautions
The following describes how warnings and cautions are used in this document and in all
documents of this Motorola document set.
Failure to comply with warnings

Observe all warnings during all phases of operation, installation and maintenance of the
equipment described in the Motorola documents. Failure to comply with these warnings,
or with specic warnings elsewhere in the Motorola documents, or on the equipment
itself, violates safety standards of design, manufacture and intended use of the
equipment. Motorola assumes no liability for the customers failure to comply with
these requirements.
Warnings
A denition and example follow below:
Denition of Warning
A warning is used to alert the reader to possible hazards that could cause loss of life, physical
injury, or ill health. This includes hazards introduced during maintenance, for example, the use
of adhesives and solvents, as well as those inherent in the equipment.
Example and format
Do not look directly into ber optic cables or data in/out connectors. Laser radiation
can come from either the data in/out connectors or unterminated ber optic cables
connected to data in/out connectors.
Cautions
Denition of Caution
A caution means that there is a possibility of damage to systems, software or individual items of
equipment within a system. However, this presents no danger to personnel.
68P09287A58-A
JUL 2007
Example and format
Do not use test equipment that is beyond its due calibration date; arrange for
calibration to be carried out.
Notes
Denition of Note
A note means that there is a possibility of an undesirable situation or provides additional
information to help the reader understand a topic or concept.
Example and format
The UDR version number is congured at installation time by Motorola personnel

and is not accessible by the customer.
68P09287A58-A
JUL 2007
General Safety
General Safety
Ground the equipment

To minimize shock hazard, the equipment chassis and enclosure must be connected to an
electrical ground. If the equipment is supplied with a three-conductor ac power cable, the
power cable must be either plugged into an approved three-contact electrical outlet or used
with a three-contact to two-contact adapter. The three-contact to two-contact adapter must
have the grounding wire (green) rmly connected to an electrical ground (safety ground) at
the power outlet. The power jack and mating plug of the power cable must meet International
Electrotechnical Commission (IEC) safety standards.
Refer to Grounding Guideline for Cellular Radio Installations 68P81150E62.
Do not operate in an explosive atmosphere

Do not operate the equipment in the presence of ammable gases or fumes. Operation of any
electrical equipment in such an environment constitutes a denite safety hazard.
Keep away from live circuits

Operating personnel must:
not remove equipment covers. Only Factory Authorized Service Personnel or other
qualied maintenance personnel may remove equipment covers for internal subassembly,
or component replacement, or any internal adjustment.
not replace components with power cable connected. Under certain conditions, dangerous
voltages may exist even with the power cable removed.
always disconnect power and discharge circuits before touching them.
Do not service or adjust alone

Do not attempt internal service or adjustment, unless another person, capable of rendering rst
aid and resuscitation, is present.
68P09287A58-A
JUL 2007
General Safety
Use caution when exposing or handling the CRT

Breakage of the CathodeRay Tube (CRT) causes a high-velocity scattering of glass fragments
(implosion). To prevent CRT implosion, avoid rough handling or jarring of the equipment. Only
qualied maintenance personnel wearing approved safety mask and gloves should handle the
CRT.
Do not substitute parts or modify equipment

Because of the danger of introducing additional hazards, do not install substitute parts or
perform any unauthorized modication of equipment. Contact Motorola Warranty and Repair
for service and repair to ensure that safety features are maintained.
Potentially hazardous procedure warnings

Warnings, such as the example below, precede potentially hazardous procedures throughout
this document. Instructions contained in the warnings must be followed. Employ all other safety
precautions necessary for the operation of the equipment in the operating environment.
Potentially hazardous voltages, capable of causing death, are present in this

equipment. Use extreme caution when handling, testing, and adjusting.
10
68P09287A58-A
JUL 2007
Devices sensitive to static
Devices sensitive to static
Certain metal oxide semiconductor (MOS) devices embody in their design a thin layer of
insulation that is susceptible to damage from electrostatic charge. Such a charge applied to the
leads of the device could cause irreparable damage.
These charges can be built up on nylon overalls, by friction, by pushing the hands into high
insulation packing material or by use of ungrounded soldering irons.
MOS devices are normally dispatched from the manufacturers with the leads short-circuited
together, for example, by metal foil eyelets, wire strapping, or by inserting the leads into
conductive plastic foam. Provided the leads are short-circuited it is safe to handle the device.
Special handling techniques

In the event of one of these devices having to be replaced, observe the following precautions
when handling the replacement:
Always wear a ground strap which must be connected to the electrostatic point on the
equipment.
Leave the short circuit on the leads until the last moment. It may be necessary to replace
the conductive foam by a piece of wire to enable the device to be tted.
Do not wear outer clothing made of nylon or similar man made material. A cotton overall
is preferable.
If possible work on an grounded metal surface or anti-static mat. Wipe insulated plastic
work surfaces with an anti-static cloth before starting the operation.
All metal tools should be used and when not in use they should be placed on an grounded
surface.
Take care when removing components connected to electrostatic sensitive devices. These
components may be providing protection to the device.
When mounted onto printed circuit boards (PCBs), MOS devices are normally less susceptible to
electrostatic damage. However PCBs should be handled with care, preferably by their edges
and not by their tracks and pins, they should be transferred directly from their packing to the
equipment (or the other way around) and never left exposed on the workbench.
68P09287A58-A
JUL 2007
11
Caring for the environment
Caring for the environment
The following information is provided to enable regulatory compliance with the European Union
(EU) Directive 2002/96/EC Waste Electrical and Electronic Equipment (WEEE) when using
Motorola Networks equipment in EU countries.
Disposal of Motorola Networks equipment in EU countries
Please do not dispose of Motorola Networks equipment in landll sites.

In the EU, Motorola Networks in conjunction with a recycling partner will ensure that equipment
is collected and recycled according to the requirements of EU environmental law.
Please contact the Customer Network Resolution Center (CNRC) for assistance. The 24 hour
telephone numbers are listed at https://mynetworksupport.motorola.com/. Select Customer
Network Resolution Center contact information. Alternatively if you do not have access
to CNRC or the internet, contact the Local Motorola Ofce.
Disposal of Motorola Networks equipment in non-EU countries

In non-EU countries, dispose of Motorola Networks equipment in accordance with national
and regional regulations.
12
68P09287A58-A
JUL 2007
Motorola document set
Motorola document set
The Motorola document sets provide the information needed to operate, install, and maintain
the Motorola equipment.
Ordering documents and CD-ROMs

With internet access available, to view, download, or order documents (original or revised), visit
the Motorola Lifecycles Customer web page at https://mynetworksupport.motorola.com/, or
contact your Motorola account representative.
Without internet access available, order hard copy documents or CD-ROMs with your Motorola
Local Ofce or Representative.
If Motorola changes the content of a document after the original printing date, Motorola
publishes a new version with the same part number but a different revision character.
Document banner denitions

A banner (oversized text on the bottom of the page, for example, PRELIMINARY UNDER
DEVELOPMENT) indicates that some information contained in the document is not yet approved
for general customer use.
68P09287A58-A
JUL 2007
13
Third Party Computer Software and Trademarks
Computer Software
The Motorola and 3rd Party supplied Software (SW) products described in this instruction
document may include copyrighted Motorola and other 3rd Party supplied computer programs
stored in semiconductor memories or other media. Laws in the United States and other
countries preserve for Motorola and other 3rd Party supplied SW certain exclusive rights for
copyrighted computer programs, including the exclusive right to copy or reproduce in any
form the copyrighted computer program. Accordingly, any copyrighted Motorola or other 3rd
Party supplied SW computer programs contained in the Motorola products described in this
instruction document may not be copied (reverse engineered) or reproduced in any manner
without the express written permission of Motorola or the 3rd Party SW supplier. Furthermore,
the purchase of Motorola products shall not be deemed to grant either directly or by implication,
estoppel, or otherwise, any license under the copyrights, patents or patent applications of
Motorola or other 3rd Party supplied SW, except for the normal non-exclusive, royalty free
license to use that arises by operation of law in the sale of a product.
Vendor
Copyright
Apache Software Foundation
Copyright 2001, 2002, 2003, 2004 , 2004 All

Rights Reserved
Artesyn
Copyright All Rights Reserved
CMU *
Free Software Foundation *
Copyright 2000 All Rights Reserved
Freeware Tools / Utilities *
GNOME Project *
iodbc.org *
Megastep *
NIST *
openBSD *
openSSL *
Performance Technologies
Postgres *
Sun Microsystems Inc. *
Telelogic
QNX *
*= May contain purchased SW and Open Source SW/Freeware which may be subject to a
license fee.
14
68P09287A58-A
JUL 2007
Trademarks
Java Technology and/or J2ME: Java and all other Java-based marks are trademarks or
registered trademarks of Sun Microsystems, Inc. in the U.S. and other countries.
UNIX: UNIX is a registered trademark of The Open Group in the United States and other
countries.
68P09287A58-A
JUL 2007
15
16
68P09287A58-A
JUL 2007
Chapter
1
Handset, CS, AD, and Web server interface
rules
The Motorola Site Engineer and Account Team Representatives must work with the PoC
Application Engineering group to obtain appropriate PoC system rewall and port assignment
information.
68P09287A58-A
JUL 2007
1-1
CS and handset interface
CS and handset interface
TCP is required for OMA POC handsets. It is not needed for MPTT handsets.
Port range varies from 2300 to 2899 for software MRS and 2300 to 5899 for IXP MRS.
Table 1-1
CS to handset interface rules

Handset IP
(Source)
Handset Port
(Source)
Server IP
(Destination)
Server Port
(Destination)
UDP
Handset
Private IP
Any
(Ephemeral).
CS IPMH
Mobile IP.
5060
TCP
Handset
Private IP
Any
(Ephemeral).
CS IPMH
Mobile IP.
Any (5060 &

Ephemeral).
Server IP
(Source)
Server Port
(Source)
Handset IP
(Destination)
Handset Port
(Destination)
UDP
CS IPMH
Mobile IP.
5060
Handset
Private IP.
Any
(Ephemeral).
TCP
CS IPMH
Mobile IP.
Any (5060 &

Ephemeral).
Handset
Private IP.
Any
(Ephemeral).
Server IP
(Source)
Server Port
(Source)
Handset IP
(Destination)
Handset Port
(Destination)
List all
MRP
oating
IPs.
2300 through
5899.
Handset
Private IP.
Any
(Ephemeral).
Protocol
Handset IP
(Source)
Handset Port
(Source)
Server IP
(Destination)
Server Port
(Destination)
UDP
(RTP/RTCP)
Handset
Private IP.
Any
(Ephemeral).
List all MRP

oating IPs.
2300 through
5899.
Protocol
Handset to CS
IPMH Interface
Protocol
CS IPMH
to Handset
Interface
Protocol
CS MRS
to Handset
Interface
Handset to CS
MRS Interface
1-2
UDP
(RTP/RTCP)
68P09287A58-A
JUL 2007
PoC Firewall Rules
CS and AD interface
CS and AD interface
UDP: Only for Integrated IMS deployments.

TCP: Only for Integrated IMS deployments.
Table 1-2
CS to AD interface rules
Protocol
CS IPMH to AD
IPMH Interface
68P09287A58-A
CS IPMH (Source)
AD IPMH IP
(Destination)
AD IPMH
(Destination)
UDP
CS IPMH
5060
Management
IP.
AD IPMH
Management
IP.
5060
TCP
CS IPMH
Any (5060 &
Management Ephemeral).
IP.
AD IPMH
Management
IP.
Any (5060 &

Ephemeral).
SCTP
CS IPMH
Ephemeral
Management
IP.
AD IPMH
Management
IP.
7008
(wms_app_ipmh
AD IPMH IP
(Source)
CS IPMH IP
(Destination)
CS IPMH
(Destination)
Protocol
AD IPMH to CS
IPMH Interface
CS IPMH IP
(Source)
AD IPMH
(Source)
.ipmh_peer_port)
UDP
AD IPMH
5060
Management
IP.
CS IPMH
Management
IP.
5060
TCP
AD IPMH
Any (5060 &
Management Ephemeral).
IP.
CS IPMH
Management
IP.
Any (5060 &

Ephemeral).
SCTP
AD IPMH
7008
Management (wms_app_ipmh.
IP.
ipmh_peer_port)
CS IPMH
Management
IP.
Ephemeral
1-3
JUL 2007
Web server and AD interface
Web server and AD interface
Table 1-3
Web server to AD interface rules

Protocol
TCP
Webserver IP
(Source)
Webserver
(Source)
Any
Webserver
Management (Ephemeral).
IP.
AD NMHost IP
(Destination)
AD NMHost
(Destination)
AD NMHost
Management
IP.
ProvAdapter
(6828)
MtasAdapter
(6827)
TL1 (2362)
MoServer
(5999)
Webserver to AD
NMHost Interface
Protocol
TCP
AD NMHost
to Webserver
Interface
1-4
AD NMHost
IP (Source)
AD NMHost
(Source)
AD NMHost
Management
IP.
Webserver IP
(Destination)
Webserver
ProvAdapter Management
(6828)
IP.
MtasAdapter
(6827
TL1 (2362)
MoServer
(5999)
Webserver
(Destination)
Any (Ephemeral).
68P09287A58-A
JUL 2007
PoC Firewall Rules
CS to Prepaid Mediation Server Interface
The prepaid mediation server NMHOST IP is congurable and port is not always 7009.
TCP: PM Server1 is active and PM Server2 is backup. Active is a TCP server and
Backup is a TCP client.
Table 1-4 CS to Prepaid Mediation Server Interface Rules
Protocol
CS IPMH
to Prepaid
Mediation
Server NMHOST
For diameter
messages.
Prepaid
Mediation
Server NMHOST
to CS IPMHFor
diameter
messages.
68P09287A58-A
TCP
CS IPMH IP
(Source)
CS IPMH Port
(Source)
Prepaid
Mediation
Server
NMHOST IP
(Destination)
Prepaid
Mediation Server
NMHOST Port
(Destination)
CS IPMH
Ephemeral
Management
IP.
Prepaid
Mediator
NMHOST IP.
7009 (port in
Protocol
Prepaid
Mediation
Server
NMHOST IP
(Source)
Prepaid
Mediation
Server
NMHOST Port
(Source)
CS IPMH IP
(Destination)
CS IPMH Port
(Destination)
TCP
Prepaid
Mediator
NMHOST
IP.
7009 (port in
CS IPMH
Ephemeral
wms_remotesp.
remote_id)
wms_remotesp Management
IP.
.remote_id)
1-5
JUL 2007
Table 1-5
PMServer1
NMHost to
PMServer2
NMHost
PM Server2
NMHOST to
PM Server1
NMHOST
1-6
CS to Prepaid Mediation Server Interface Rules continued

Protocol
PM Server1
NMHOST IP
(Source)
PM Server1
NMHOST Port
(Source)
TCP
PM Server1
NMHost IP
7010
PM Server2
(wms_app_prepaid_ NMHost IP
mediator.peer_port)
Ephemeral
Protocol
PM Server2
NMHOST IP
(Source)
PM Server2
NMHOST Port
(Source)
PM Server1
NMHOST IP
(Destination)
PM Server1
NMHOST Port
(Destination)
TCP
PM Server2
NMHOST IP.
Ephemeral
PM Server1
NMHOST IP.
7010
(wms_app_prepaid_
mediator.peer_port)
PM Server2
NMHOST IP
(Destination)
PM Server2
NMHOST Port
(Destination)
68P09287A58-A
JUL 2007
PoC Firewall Rules
OAMP Trafc (NMHOST)
OAMP Trafc (NMHOST)
Table 1-6
Web Browser to CS/AD server

Browser IP
(Source)
Browser Port
(Source)
Server IP
(Destination)
Server Port
(Destination)
HTTP
Any (Web
Browser IP).
Any
(Ephemeral).
AD/CS NMH
Primary IP.
80
HTTPS
Any (Web
Browser IP).
Any
(Ephemeral).
AD/CS NMH
Primary IP.
443
Protocol
This is to access
the EMS GUI
page for the
CS/AD. This can
be limited within
the Operator
private network.
Table 1-7
Subscriber or enterprise admin Web server to AD

Server IP
(Destination)
Server Port
(Destination)
Web server IP
(Source)
Web server
Port (Source)
TCP
AD NMH
Primary IP.
6828
Web server IP
Any
(Ephemeral).
TCP
AD NMH
Primary IP.
6827
Web server IP
Any
(Ephemeral).
Protocol
Subscriber
or enterprise
admin Web
server to AD.
MTAS client is an application in operator network which provisions PoC subscribers to MTAS
interface on the AD.
Table 1-8 MTAS client to MTAS interface on the AD.

Protocol
MTAS Client
68P09287A58-A
TCP
Server IP
(Destination)
Server Port
(Destination)
MTAS client
(Source) IP
MTAS client
Port (Source)
AD NMH
Primary IP.
6827
MTAS Client IP.
Any
(Ephemeral).
1-7
JUL 2007
OAMP Trafc (NMHOST)
Table 1-9 is for the SNMP Manager to do SNMP GET/SET/GETNEXT kind of operations on the
PoC Network elements like AD/CS/Web server.
Table 1-9
Operator SNMP manager and the SNMP interface of AD/CS/Web Server

Protocol
SNMP
UDP
GET/SET/GETNEXT
Operations
SNMP
Agent IP
(Destination)
SNMP
Agent Port
(Destination)
AD/CS NMH
primary IP or
Web server
IP.
161
SNMP Manager
(Source) IP
SNMP Manager
Port (Source)
Client Private
IP.
Any
(Ephemeral).
Table 1-10 is for the PoC Network elements like AD/CS/webserver to send SNMP traps.
Table 1-10
Operators SNMP Manager and the SNMP interface of AD/CS/ WebServer.

Protocol
UDP
PoC Network
elements like
AD/CS/Web
Server to send
SNMP traps
SNMP Agent
IP (Source)
SNMP Agent
Port (Source)
SNMP Manager
(Destination) IP
AD/CS NMH
primary IP, or
Web server
IP
162
List of IPs
Congured in
the AD/CS/Web
server.
SNMP
Manager Port
(Destination)
List of Ports
Congured
in the
AD/CS/Web
server.
Table 1-11 is for sync operations between the ADs or the primary AD and the other CS/ADs. This
is also to access billing records and to bring in new software loads/patches for upgrades.
Table 1-11
FTP / SFTP.
Server IP
(Destination)
Server Port
(Destination)
Client IP
(Source)
Client Port
(Source)
FTP
AD/CS NMH
Primary IP.
21
Any
Any
(Ephemeral).
SFTP
AD/CS NMH
Primary IP.
22
Any
Any
(Ephemeral).
Protocol
Sync operations
between the
ADs or the
primary AD
and the other
CS/ADs.
1-8
68P09287A58-A
JUL 2007
PoC Firewall Rules
OAMP Trafc (NMHOST)
The following Table 1-12 is for terminal access to the PoC Network element - AD/CS/webserver.
Table 1-12
Telnet / SSH
Server IP
(Destination)
Server Port
(Destination)
Client (Source)
IP
Client Port
(Source)
TELNET
AD/CS NMH
Primary IP
Public IPs of
NMHOST01
and
NMHOST02.
23
Any
Any
(Ephemeral).
SSH
AD/CS NMH
primary IP
Public IPs of
NMHOST01
and
NMHOST02.
22
Any
Any
(Ephemeral).
Protocol
Terminal
access to the
PoC Network
element AD/CS/Web
server.
The following Table 1-13 is to enable the AD and webserver to send out emails. AD send out
emails for auto-provisioning feature and webserver for forgot password.
Table 1-13
SMTP
Protocol
SMTP
Client
(Source) IP
Client Port
(Source)
Server IP
(Destination)
Server Port
(Destination)
AD/Prepaid
MS, NMH
Primary IP,
Web server
IP.
Any
(Ephemeral).
SMTP server IP.
25
The following Table 1-14 is to enable the PoC network elements to sync their time to the
network time server.
Table 1-14
NTP Sync
Protocol
NTP Sync
68P09287A58-A
NTP
Client (Source)
IP
Client Port
(Source)
Server IP
(Destination)
AD/CS NMH
Primary IP,
Web server IP,
external IPs of
NMHOST01
and
NMHOST02
on the AD/CS.
Any
Network time
(Ephemeral) server IP.
Server Port
(Destination)
123
1-9
JUL 2007
OAMP Trafc (NMHOST)
The following Table 1-15 is to enable the PoC network elements to sync their time to the
network time server.
Table 1-15
NMS Sync
Table 1-16
1-10
NMS Sync
Protocol
Primary AD
NMHOST IP
(Source)
Primary AD
NMHOST
Port
(Source)
SCP
Primary AD
NMH Primary
IP.
Any
AD/CS NMH
(Ephemeral). Primary IP.
AD1 /CS1
NMHOST IP
(Destination)
AD1/CS1
NMHOST port
(Destination)
22
XML API to Web Server

Protocol
XML API IP
(Source)
XML API IP
Port (Source)
Web server IP
(Destination)
Web Server port

(Destination)
HTTP
Any Private IP
Any
(Ephemeral)
Web server IP
80
HTTPs
Any Private IP
Any
(Ephemeral)
Web server IP
443
68P09287A58-A
JUL 2007
PoC Firewall Rules
Multi AD interface
Multi AD interface
IPMH of AD1 should be connected to IPMH of all other AD chassis (active and
backup) - except AD1s own backup AD.
SCTP: Assuming AD1 wms_app_ipmh.ipmh_peer_port is less than that on AD2 (this
makes AD1 IPMH the client and AD2 IPMH the server).
Table 1-17
AD1 IPMH to AD2 IPMH Interface

Protocol
AD1 IPMH
to AD2 IPMH
Interface
SCTP
AD1 IPMH IP
(Source)
AD1 IPMH
Port (Source)
AD2 IPMH IP
(Destination)
AD2 IPMH Port

(Destination)
AD1 IPMH
Management
IP.
Ephemeral
AD2 IPMH
Management
IP.
7009
(wms_app_ipmh.
ipmh_peer_port)
IPMH of AD1 should be connected to IPMH of all other AD chassis (active and
backup) - except AD1s own backup AD.
SCTP: Assuming AD1 wms_app_ipmh.ipmh_peer_port is less than that on AD2 (this
makes AD1 IPMH the client and AD2 IPMH the server).
Table 1-18
AD2 IPMH to AD1 IPMH Interface

Protocol
AD2 IPMH
to AD1 IPMH
Interface
68P09287A58-A
SCTP
AD2 IPMH IP
(Source)
AD2 IPMH Port

(Source)
AD1 IPMH IP
(Destination)
AD2 IPMH
Management
IP.
7009
AD1 IPMH
(wms_app_ipmh.ipmh Management
_peer_port)
IP.
AD1 IPMH Port

(Destination)
Ephemeral
1-11
JUL 2007
Multi AD interface
Table 1-19
NMS Sync
Protocol
AD1 NMHOST
to Primary AD
NMHOST
1-12
SCP
Primary AD
NMHOST IP
(Source)
Primary AD
NMHOST Port
(Source)
AD1 /CS1
NMHOST IP
(Destination)
AD1/CS1
NMHOST port
(Destination)
Primary AD
NMH Primary
IP.
Any
(Ephemeral).
AD/CS NMH
Primary IP.
22
68P09287A58-A
JUL 2007
PoC Firewall Rules
Network to Network Interface
SIP Trafc
Table 1-20
CS IPMH IP to
NNI IP
Table 1-21
NNI IP to CS
IPMH IP
CS IPMH IP to NNI IP
CS IPMH Port
(Source)
NNI IP List
(Destination)
NNI IP Port
(Destination)
SIP Mobile IP at CS
IPMH.
5060
SIP Core IP
Any (5060 &

Ephemeral).
SIP Mobile IP at CS
IPMH.
Any (5060 &

Ephemeral).
SIP Core IP
Any (5060 &

Ephemeral).
Protocol
CS IPMH IP (Source)
UDP
TCP
NNI IP to CS IPMH IP interface

CS IPMH
Port
(Source)
Protocol
NNI IP List
(Destination)
NNI IP Port
(Destination)
CS IPMH IP(Source)
UDP
SIP Core IP
Any (5060 &

Ephemeral).
SIP Mobile IP at CS
IPMH.
5060
TCP
SIP Core IP
Any (5060 &

Ephemeral).
SIP Mobile IP at CS
IPMH.
Any
(5060 &
Ephemeral).
Media trafc
<X, Y> is range of ports open on the NNI Server for media.
68P09287A58-A
1-13
JUL 2007
Participating Server is in Media Path

Table 1-22
Participating
Server in
Media Path
CS MRS to NNI Media

NNI Media
Posrt
(Destination)
Protocol
CS MRS IP
(Source)
CS MRS IP
(Port)
NNI Media IP
(Destination)
UDP
(RTP/RTCP)
List all MRP

IPs.
2300 through
5899
NNI MRP IP
list.
<X, Y>
UDP
(RTP/RTCP)
NNI MRP IP
list.
<X, Y>
List all MRP

IPs.
2300
through
5899.
Participating Server not in Media Path

Table 1-23
Participating
Server not in
Media Path
1-14
CS MRS to NNI Handsets

Protocol
CS MRS
IP(Source)
CS MRS Port
(Source)
NNI Handset IP
(Destination)
NNI Handset
Port
(Destination
UDP
(RTP/RTCP)
List all MRP

IPs.
2300
through
5899
Handset private
IP addresses.
Ephemeral
UDP
(RTP/RTCP)
Handset
private IP
addresses.
Ephemeral
List all MRP

IPs.
2300
through
5899
68P09287A58-A
JUL 2007
PoC Firewall Rules
IMS to PoC Application Server Interface
IMS to PoC CS
This section deals with rules for SIP messages for the PoC service.
Table 1-24
IMS to CS
Table 1-25
CS to IMS
IMS to PoC CS
Protocol
Source IP
Source Port
Destination IP
Destination
Port
SIP/TCP
SIP IP Core
Any
(Ephemeral).
CS IPMH
Mobile IP.
any (5060 &

Ephemeral).
SIP/UDP
SIP IP Core
Any
(Ephemeral).
CS IPMH
Mobile IP.
5060
PoC CS to IMS
Protocol
Source IP
Source Port
Destination IP
SIP/TCP
CS IPMH Mobile
IP.
Any
SIP IP Core of
(Ephemeral). IMS.
Any
(Ephemeral).
SIP/UDP
CS IPMH Mobile
IP.
5060
Any
(Ephemeral).
SIP IP Core of
IMS.
Destination
Port
IMS to PoC AD
This section deals with rules for SIP messages for the Presence service.
68P09287A58-A
1-15
JUL 2007
Table 1-26
IMS to AD
Table 1-27
AD to IMS
1-16
IMS to PoC AD
Protocol
Source IP
Source Port
Destination IP
Destination
Port
SIP/TCP
SIP IP Core
Any
(Ephemeral).
AD IPMH
Mobile IP.
any (5060 &

Ephemeral).
SIP/UDP
SIP IP Core
Any
(Ephemeral).
AD IPMH
Mobile IP.
5060
PoC AD to IMS
Protocol
Source IP
Source Port
Destination IP
SIP/TCP
AD IPMH
Mobile IP.
Any
SIP IP Core of
(Ephemeral). IMS.
Any
(Ephemeral).
SIP/UDP
AD IPMH
Mobile IP.
5060
Any
(Ephemeral).
SIP IP Core of
IMS.
Destination
Port
68P09287A58-A
JUL 2007
PoC Firewall Rules
HS to XDMS interface
HS to XDMS interface
Table 1-28
HS to XDMS
HS to XDMS
Protocol
Source IP
Source Port
Destination IP
Destination
Port
HTTP/TCP
Handset
Private IP
Ephemeral
Web server IP
80
Protocol
Source IP
Source Port
Destination IP
Destination
Port
HTTP/TCP
Web server IP
80
Handset
Private IP
Ephemeral
For TLS, port is 443.
Table 1-29
XDMS to HS
68P09287A58-A
XDMS to HS
1-17
JUL 2007
CS to CS (IPMH Sigcomp)
CS to CS (IPMH Sigcomp)
Table 1-30
OCS to TCS
Table 1-31
TCS to OCS
1-18
OCS to TCS
Protocol
Source IP (OCS)
Source
Port
Destination IP
(TCS)
Destination
Port
SIP/TCP
OCS IPMH
Mobile IP and
OCS IPMH
Management IP.
Any
TCS IPMH
Mobile IP and
TCS IPMH
Management
IP.
Any
SIP/UDP
OCS IPMH
Mobile IP and
OCS IPMH
Management IP.
5060
TCS IPMH
Mobile IP
and TCS
Management
IP.
5060
TCS to OCS
Protocol
Source IP (TCS)
Source
Port
Destination IP
(OCS)
Destination
Port
SIP/TCP
TCS IPMH Mobile

IP and TCS IPMH
Management IP.
Any
OCS IPMH
Mobile IP and
OCS IPMH
Management
IP.
Any
SIP/UDP
TCS IPMH Mobile

IP and TCS
Management IP.
5060
OCS IPMH
Mobile IP and
OCS IPMH
Management
IP.
5060
68P09287A58-A
JUL 2007
PoC Firewall Rules
CS to GAMA
CS to GAMA
Table 1-32
CS to Diameter server
Protocol
Source IP
Source Port
Destination IP
Destination
Port
TCP
IPMH IP
(ext_ipaddr from
Ephemeral
Diameter
server IP.
Congurable
wms_ipmh_ext_ipaddr
CS to
Diameter
where
use_ip_for_gama_connection
is true).
Table 1-33
Diameter to
CS
Diameter server to CS
Protocol
Source IP
Source Port
Destination IP
TCP
Diameter
server IP.
Congurable IPMH IP
(ext_ipaddr from
Destination
Port
Ephemeral
wms_ipmh_ext_ipaddr
where
use_ip_for_gama_connection
is true.
68P09287A58-A
1-19
JUL 2007
DNS to CS/AD/PM Server
Table 1-34
DNS Server
- CS/AD (CS
uses it for NNI,
AD uses DNS
for autoprov)
Table 1-35
DNS server to
AD/CS
1-20
DNS server to CS/AD/PM server

Protocol
Source IP
Source Port
Destination IP
Destination
Port
UDP
CS IPMH
Mobile IP,
CS IPMH
Management
IP, AD &
Prepaid
Mediation
Server
NMHost
Floating IP.
Ephemeral
DNS Server
IP
53
TCP
CS IPMH
Mobile IP,
CS IPMH
Management
IP, AD &
Prepaid
Mediation
Server
NMHost
Floating IP.
Ephemeral
DNS Server
IP
53
DNS server to AD/CS/PM server

Protocol
Source IP
Source Port
Destination IP
Destination
Port
UDP
DNS server
IP
Ephemeral
(including
53).
CS IPMH Mobile
IP, CS IPMH
Management IP,
AD & Prepaid
Mediation
Server NMHost
Floating IP.
Ephemeral
TCP
DNS server
IP
Ephemeral
CS IPMH Mobile
IP, CS IPMH
Management IP,
AD & Prepaid
Mediation
Server NMHost
Floating IP.
Ephemeral
68P09287A58-A
JUL 2007
Appendix
Acronyms and Abbreviations

AD
Active Directory
API
Application Programming Interface
CS
Control Switch
DNS
Domain Name Service
EMS
Element Management Server
GAMA
Global Application Management Architecture
GUI
Graphical User Interface
HS
Hand Set
HTTP
Hypertext Transfer Protocol
HTTPS
Hypertext Transfer Protocol Secure
IMS
IP Multimedia Subsystem
IPMH
IP Message Handler
MO
Managed Object
MRP
Media Resource Platform
MRS
Media Resource Server
MTAS
Mobile Telephony API Service
NMS
Network Management System
NNI
NTP
Network Time Protocol
OCS
Originating Control Switch
PoC
Push-to-talk Over Cellular
PM
Provisioning Module
RTCP
Real Time Control Protocol
RTP
Real Time Protocol
SCTP
Stream Control Transmission Protocol
SIP
Session Initiation Protocol
SNMP
Simple Network Management Protocol
SPDB
Subscriber and Presence Database
SSH
Secure Shell
TCP
Transfer Control Protocol
TCS
Termination Control Switch
TL1
Transaction Language Console
68P09287A58-A
JUL 2007
A-1
A-1
Appendix A: Acronyms and Abbreviations
TLS
Transparent LAN service
UDP
User Datagram Protocol
WS
Web Server
XDMS
XML Document Management Servers
XML
Extended Markup Language
68P09287A58-A
JUL 2007
*68P09287A58-A*
68P09287A58-A
Technical
Information
POC FIREWALL RULES
SOFTWARE RELEASE 6.1.X.X

POC
ROW, US/HONG KONG
ENGLISH
JUL 2007
68P09287A58-A
POC FIREWALL RULES

SOFTWARE RELEASE 6.1.X.X
POC
ROW, US/HONG KONG
ENGLISH
JUL 2007
68P09287A58-A
Standard Printing Instructions

Part Number
68P09287A58-A
Manual Title
PoC Firewall Rules
Date
JUL 2007
CSD/CND (US)
Binder
Printing
Finishing
3 Slant D-ring binder - letter size (11.75 in x 11.5 in) white PVC.
Capacity depends on size of document. (no larger than 3 in).
Clear pockets on front and spine.
Cover / spine text overprinted onto Motorola cover stock.
Body- printed double sided onto white letter size (8.5 in x 11 in) 70 lb.
Shrink wrap contents.

Firewall Rules 68p09287a58

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Firewall Rules 68p09287a58

Uploaded by

Copyright:

Available Formats

PoC Firewall Rules

PoC Firewall Rules

Chapter 1: Handset, CS, AD, and Web server interface rules

OAMP Trafc (NMHOST) . . . . . . . .

Appendix A: Acronyms and Abbreviations

1-1: CS to handset interface rules . . . . . . . . . . . . . . . . . . . . . . . .

PoC Firewall Rules

Failure to comply with Motorolas operation, installation and maintenance instructions

Special key sequences

Press the Control and c keys at the same time.

Press the Alt and f keys at the same time.

Press the pipe symbol key.

Press the Return key.

Motorola appreciates feedback from the users of our documents.

The document type

The document title, part number, and revision character

The page number(s) with the error

A detailed description of the error and if possible the proposed solution

Questions and comments

Warnings and cautions

Warnings and cautions

Failure to comply with warnings

Example and format

Warnings and cautions

Example and format

Example and format

The UDR version number is congured at installation time by Motorola personnel

Ground the equipment

Refer to Grounding Guideline for Cellular Radio Installations 68P81150E62.

Do not operate in an explosive atmosphere

Keep away from live circuits

always disconnect power and discharge circuits before touching them.

Do not service or adjust alone

Use caution when exposing or handling the CRT

Do not substitute parts or modify equipment

Potentially hazardous procedure warnings

Potentially hazardous voltages, capable of causing death, are present in this

Devices sensitive to static

Devices sensitive to static

Special handling techniques

Caring for the environment

Caring for the environment

Disposal of Motorola Networks equipment in EU countries

Please do not dispose of Motorola Networks equipment in landll sites.

Disposal of Motorola Networks equipment in non-EU countries

Motorola document set

Motorola document set

Ordering documents and CD-ROMs

Document banner denitions

Third Party Computer Software and Trademarks

Third Party Computer Software and Trademarks

Apache Software Foundation

Copyright 2001, 2002, 2003, 2004 , 2004 All

Copyright All Rights Reserved

Copyright All Rights Reserved

Free Software Foundation *

Copyright 2000 All Rights Reserved

Freeware Tools / Utilities *

Copyright All Rights Reserved

Copyright 2004 All Rights Reserved

Copyright 2002 All Rights Reserved

Copyright 2002 All Rights Reserved

Copyright 2002 All Rights Reserved

Copyright 2006 All Rights Reserved