Dealing with MS Netmeeting & H.323

Ryan Russell
Wed, 3 Jun 1998 11:18:41 -0700

I'll agree with Fred on this one... It's pratically impossible
to really handle Netmeeting securely at this point, since the application's
purpose in life creates huge holes, even when functioning correctly.

At best at present, the main SPF products such as FW1 and PIX
just open the minimum number of ports for the minimum amount
of time.  It's a big impovement over Microsoft's instructions (
Just let all UDP in... .yea, right) but the program itself is still
pretty bad.

You really need a dedicated H.323 conferencing system to
even think about doing Netmeeting safely at this point.


Frederick M Avolio <> on 06/02/98 01:39:44 PM

Please respond to Frederick M Avolio <>

cc:    (bcc: Ryan Russell/SYBASE)
Subject:  Re: Dealing with MS Netmeeting & H.323

>> An H.323 proxy could solve these problems.  Firewall-1 states they can
>> handle H.323  and work with Netmeeting (Does anyone have any experience
>> with this?).  Guantlet/NT has an H.323. proxy but  their administrator's
>Cisco PIX has the ability to securely convey H.323 (including MS

Many companies claim to "handle" and some even indicate "handle securely."
I'd be interested in a short blurb from the vendors who handle such things
indicating how they handle it and why they think the way they handle it is
secure. (This is not intended to cast aspersions on any above-mentioned


Frederick M. Avolio, Internet Security Consulting
16228 Frederick Road, PO Box 609, Lisbon, MD 21765
410-309-6910 (voice)          410-309-6911 (fax)

Received: from ([]) by
(Lotus SMTP MTA v4.6.1  (569.2 2-6-1998)) with SMTP id 88256618.00636E2E;
Wed, 3 Jun 1998 11:06:02 -0700
Received: from (smtp1 [])
          by (8.8.4/8.8.4) with SMTP
       id LAA24851; Wed, 3 Jun 1998 11:03:59 -0700 (PDT)
Received: from by
     id AA07208; Wed, 3 Jun 98 11:03:58 PDT
Received: from ( [])
          by (8.8.4/8.8.4) with ESMTP
       id LAA04810; Wed, 3 Jun 1998 11:05:23 -0700 (PDT)
Received: (from lists@localhost)
     by (8.8.8/8.8.8) id WAA20503
     for firewall-wizards-outgoing; Tue, 2 Jun 1998 22:23:29 -0500 (CDT)
Received: (from fwiz@localhost)
     by (8.8.8/8.8.8) id WAA20475
     for; Tue, 2 Jun 1998 22:23:16 -0500 (CDT)
Received: from ( [])
     by (8.8.8/8.8.8) with ESMTP id PAA18834
     for <>; Tue, 2 Jun 1998 15:40:30 -0500 (CDT)
Received: from ( [])
     by (8.8.8/8.8.8) with SMTP id QAA07702
     for <>; Tue, 2 Jun 1998 16:45:04 -0400 (EDT)
Message-Id: <>
X-Sender: (Unverified)
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0.1
Date: Tue, 02 Jun 1998 16:39:44 -0400
From: Frederick M Avolio <>
Subject: Re: Dealing with MS Netmeeting & H.323
In-Reply-To: <>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Precedence: bulk
Reply-To: Frederick M Avolio <>