Cyberoam UTM Device

For the latest updates please refer to our Firewall Best Practices guide for the latest IP address ranges and services.

Important:  Make sure device firmware is always up to date.

Enabling WAN ping response:

Once logged in to the web interface of the Cyberoam go to System > Administration > Application Access. Check the box under the WAN zone labeled Ping.

Setting up Cytracom host:

Once logged in to the web interface of the Cyberoam:

Go to Hosts > Add > Name = "Cytracom"

IP Family = IPv4

Type = IP Range

IP Address =

 New system = 209.105.249.194 - 209.105.249.252

 Old system = 74.124.9.139 - 74.124.9.158

IP Host Group = IP Host Group.

After all of that matches up press OK.

 

Setting up QOS Rule:

Once logged into the web interface of the Cyberoam:

Go to QOS on the left hand side. Once there go to Policy > Add > input this information > Name = "CytracomQOS"

Policy Based on = Firewall Rule

Policy Type = Committed

Implementation = Total (Upload + Download)

Priority = 0

Guaranteed - Burstable (in kb) = {This depends on how many phones there are. Multiply each phone by 80 kb. The second box put the  max bandwidth so there are no restrictions on how much the phones can use. } 

Setting up Access Rule: 

Once logged in to the web interface of the Cyberoam:

Go to  Firewall. Once there go to Rule > Add. Input the following information exactly > Name = "Cytracom"

Description = Optional

Zone Source = LAN

Zone Destination = WAN

Attach Identity = Unchecked

Network/Host = Any IP Address/Cytracom

Services = Any Services

Schedule = All The Time

Action = Accept

Apply NAT = Checked

Drop Down = MASQ

Open Advanced and proceed

Application Filter = None

Apply Application Based QOS Policy = Unchecked

Web Filter = None

Apply Web Category Based QOS Policy = Unchecked

IPS = None ; IM Scanning = Unchecked

WAF = Unchecked

AV & AS Scanning = None Checked

QOS = "CytracomQOS'

DSCP Marking = 46-Expedited Forwarding(EF)

Route Through Gateway = Greyed Out

Back Up Gateway = Greyed Out

Log Firewall Traffic = Checked 

Disabling SIP ALG: 

Once logged in to the web interface of the Cyberoam go to the Console. Once there go to option four. When in the console type "cyberoam system_modules show" This will show that the SIP as loaded. Then type "cyberoam system_modules sip unload". This will disable SIP ALG/Helper.

 

 

Was this article helpful?
6 out of 8 found this helpful