Network
Intro
Installation
SysAdmin
Network
Listeners 
Dialup 
Objects
Transfer
RealTime
Access
Services
Directory
Clusters
Applications
WebMail
PBX
Miscellaneous
Licensing
CommuniGate Pro is a network server, and it needs to know the configuration of your network. Most of the settings are retrieved automatically from your OS setup, but you may want to change these settings and/or specify additional settings.

This section describes the CommuniGate Pro network settings.

LAN Addresses

If you use CommuniGate Pro in a corporate environment, most of your users will connect to the Server from the corporate LAN(s). Use a web browser to open the Settings realm of the CommuniGate Pro WebAdmin Interface, and click the Network link. The LAN IPs page appears.

LAN IP Addresses

The LAN IP Addresses table initially contains the addresses the CommuniGate Pro software retrieved from the Server OS configuration. Correct this list to include all LAN (local networks) the CommuniGate Pro Server needs to serve.

Each table line should include either one IP address or an address range - two IP addresses separated with the minus sign: a range includes both IP addresses and all addresses between them.

A comment (separated with the semicolon (;) symbol) the can be placed at the end of a line. A line starting with a semicolon symbol is a comment line.

Usually, you want all mail clients connecting from the LAN addresses to be able to relay mail to any Internet destination, so you will inlcude the LAN addresses into the Client IP Addresses list.

The list of LAN IP Addresses is used to support real-time (voice, video, etc.) communications, so the CommuniGate Pro Server knows which addresses are "not-real" ("local") addresses, i.e. which addresses cannot be contacted directly from the Internet.

NATed Addresses

CommuniGate Pro can provide SIP and real-time communications for remote clients located behind NAT devices, implementing the far-end NAT traversal functionality.

To detect clients located behind NATs, the Server needs to know which addresses are used on remote networks behind those NATs. Use a web browser to open the Settings realm of the CommuniGate Pro WebAdmin Interface, and click the Network link. Then open NATed IPs page.

NATed IP Addresses
Ping NATed Clients every:

If a SIP client sends a request to CommuniGate Pro and the client own network address specified in the request headers is included into the NATed IP Addresses list, while the Server has received this request from a different network address, NOT listed included into the NATed IP Addresses list, the Server decides that this client is behind a NAT.

To allow other users to make incoming calls to a client behind a NAT, the CommuniGate Pro server keeps the "communication hole" between the client and server open by periodically sending dummy packets to that client. Use the Ping NATed Clients setting to specify how often the Server should send those packets.

NAT/Firewall Parameters

There are two main types of LAN installations:
Local NAT/Firewall
WAN IP Address: LAN IP Address:

WAN IP Address
If your CommuniGate Pro Server has several network connections, some - to the LAN, and some - to the WAN (Internet), use this setting to specify the IP address the server OS uses by default when connecting to remote hosts over the Internet:

If your CommuniGate Pro Server is installed on a LAN behind a NAT/Firewall, the NAT/Firewall device should be configured to relay all connections on its communication (POP, SMTP, SIP, etc.) ports to the CommuniGate Pro Server LAN address. Use this setting to specify the IP address your NAT/Firewall "relays" to CommuniGate Pro.

For example, if your CommuniGate Pro Server has the 10.0.1.12 IP address on your LAN, and the NAT/Firewall relays all incoming connections coming to the 77.77.77.77 IP address to the 10.0.1.12 address, specify the 77.77.77.77 IP address in this setting:

LAN Address
Use this setting to specify which IP address the Server should use for real-time communication with the LAN clients. It can be any server IP address that belongs to the LAN.

Media Proxy Parameters

CommuniGate Pro supports various real-time communications. Most of those real-time protocols cannot be used via a NAT/Firewall, so CommuniGate Pro can act as "proxy" for those protocols. When a real-time client on a LAN tries to communicate with the a remote system on the Internet, CommuniGate Pro creates a communication port on its own system, and forces the client to connect to that port instead of the remote system port. The CommuniGate Pro communicates with the remote system itself, relaying the data received from the remote system to the client on the LAN and vice versa.

Media Proxy is used when serving real-time clients located behind remote NAT devices.

Media Proxy
Log:   Round-Robin Allocation
UDP Ports: - TCP Ports: -

Log
Use this setting to specify what kind of information the Proxy component should put in the Server Log. Usually you should use the Major or Problems (non-fatal errors) levels. But when you experience problems with the Proxy component, you may want to set the Log Level setting to Low-Level or All Info: in this case protocol-level or link-level details will be recorded in the System Log as well.
The Proxy component records in the System Log are marked with the UDPPROXY or the TCPPROXY tag.

UDP Ports
This setting specifies the port number range to be used for UDP proxy operations. If the CommuniGate Pro server is behind a NAT/Firewall, make sure that all UDP packets received by the NAT/Firewall for these ports are relayed to the CommuniGate Pro Server.

TCP Ports
This setting specifies the port number range to be used for TCP proxy operations. If the CommuniGate Pro server is behind a NAT/Firewall, make sure that all TCP connections received by the NAT/Firewall for these ports are relayed to the CommuniGate Pro Server.

Round-Robin Allocation
When this option is selected, UDP and TCP ports are allocated evenly using the entire port range. When this option is not selected, UDP and TCP ports are allocated using the first (lowest) available port in the port range.

Domain Name Resolver (DNR)

The CommuniGate Pro Server uses its own high-speed multithreaded Domain Name Resolver to convert domain names into network (IP) addresses. To convert names, the Domain Name Resolver sends requests to the specified Domain Name Servers.

Server Administrators with the Can Modify Settings access right can modify the Resolver settings. Open the Obscure page in the Settings section of the Server WebAdmin Interface:

Domain Name Resolver
Log: Concurrent Requests:
Initial Time-out: Retry Limit:
DNS Addresses: [209.1.58.247], [206.40.74.1]
Dummy IP Addresses:
Log
Use this setting to specify what kind of information the Domain Name Resolver should put in the Server Log. Usually you should use the Major or Problems levels. In the later case you will see the information about all failed DNS lookups. If you use the RBL services, you may see a lot of failed lookups in the Log. When you experience problems with the Domain Name Resolver, you may want to set the Log Level setting to Low-Level or All Info: in this case protocol-level or link-level details will be recorded in the System Log as well.

The Resolver records in the System Log are marked with the DNR tag.

Concurrent Requests
This setting limits the number of concurrent requests the Resolver can send to Domain Name Servers. On a heavily-loaded mail relay processing several hundred requests per second, this parameter should be selected after some testing: older DNS servers may crash if requested to process too many concurrent requests, also in certain cases the DNR traffic may start to compete with the mail transfer (SMTP) traffic.

Initial Time-out
Then Domain Name System uses a connectionless UDP protocol, and if there any network trouble, a UDP request or reposnse can be lost (TCP protocol automatically resends lost packets). The Domain Name Resolver waits for a response from a DNS server for the period of time specified with this option.

If a response is not received, the Resolver resends the request, and waits twice longer, if it times out again, it can resend the request again and wait three times longer.

If you have several Domain Name Servers specified, each time the resolver needs to repeat a request, it sends it to the next DNS server in the list.

Retry Limit
This option specifies how many time the Resolver should re-send the same request if it has not received any response from a DNS server.

Note: when a request is an RBL request, the Resolvers sends the same request not more than twice, and both times it uses the same (Initial) response time-out.

DNS Addresses
This setting specifies how the CommuniGate Pro Server selects the DNS servers to use. If the OS-specified option is selected, the Server reads the DNS server addresses from the OS. To force the server to re-read those addresses, click the Refresh buttom on the General page in the Settings section.

If the Custom option is selected, the CommuniGate Pro Server will use the DNS servers addresses listed in the text field next to this pop-up menu.

If no DNS server address is specified, the CommuniGate Pro Server uses the 127.0.0.1 address, trying to connect to a DNS server that can be running on the same computer as the CommuniGate Pro Server.

Dummy IP Addresses
This setting allows you to specify network (IP) addresses and/or address ranges that should be considered as "non-existent". Some DNS authorities may choose to "map" all non-existant names within their domains to some special IP address(es).

When a domain name is resolved into IP addresses, the Resolver checks the first address. If this address is listed in the Dummy IP Addresses list, the Resolver returns the "unknown host/domain name" error code. The same check is performed with the results of the DNS MX-search operations.

The Domain Name Resolver uses TCP connections if the server UDP response came back with the "Truncated" flag set. This feature allows the Resolver to retrieve very large records from DNS servers.

CommuniGate® Pro Guide. Copyright © 1998-2006, Stalker Software, Inc.