Apple's docs claim that iChat AV will work through NAT routers. I have a LinkSys BEFSR41 4 port router, and it works fine without any port mapping. I did run into one problem. My machine is usually DMZ on my network (for services), and iChat video/audio would NOT work at that point, which I found strange.

---
--
duo

[ Reply to This | # ]

A bit off topic, but what about file transfer through Linksys router with NAT?

I have a friend (we both have Linksys routers) and we can't seem to get file transfer to work. We even tried making each machine a DMZ host in the Linksys setup.

Any tips?

---
--
russh

[ Reply to This | # ]

I have the same problem.

[ Reply to This | # ]

I belive that file transfers require someone to be accessible via TCP from the internet, this probably requires manual port forwarding.

[ Reply to This | # ]

My experience is that at least ONE machine should not have a firewall for file transfers and video/audio to work.

---
-- "An eye for an eye leaves us all blind." - Gandhi

[ Reply to This | # ]

My experience is that both machines can be behind a firewall as long as they have automatic reverse UDP forwarding enabled so that outgoing UDP messages open up an incoming port to the computer beginning the session. This typically does not work behind corporate firewalls though and you'll have better luck with a home router.

[ Reply to This | # ]

Could you (or someone) go into a little more detail about this ("automatic reverse UDP forwarding enabled"), maybe even with some examples?

If you need to use a specific router in the examples, perhaps the LinkSys BEFSR41 4 port router would be a good choice ...

OR if you can point me (us) to other web links that explain this in detail, I (we) would really appreciate it!

(I have a lot of experience with Macs and Unix, but not with Routers =:^0 )

[ Reply to This | # ]

I have one IP address being shared using one wireless router (Netgear) between two computers: an iBook and a PowerBook. Both of these computers have iChat A/V installed yet only one of them can use the A/V features.

As far as I can tell this is because the PowerBook is the DMZ (default server actually) for our small network. As I understand it this means the packets being sent into our network are not being routed to the appropriate computer - just the PowerBook.

Is there a way around this? Do we have to have our own unique IP address to use the A/V features?

[ Reply to This | # ]

Many of my friends, using Audio only, could not get connections to work in the new iChat even though we all have broadband and fairly new G4 systems. We discovered that by setting the video bandwidth to 500k from the default "none" that connections worked properly.

[ Reply to This | # ]

problem is, i can't change this setting because my computer can't do video conferencing. I can do audio though, but it won't let me change the bandwidth setting. Anyone know how to do this manually (i.e. editing a plist or something?)

[ Reply to This | # ]

Even with only audio you can still go to iChat preferences and to the video tab to set the bandwidth. If you can't then make sure that iChat is recognizing that you have audio. You might need to set the correct source in System Preferences.

[ Reply to This | # ]

It recognizes the fact that I have a mic. when I try to initiate an audio chat with someone, the meter level is going all crazy when I talk and whatnot. So I don't think that's the problem. When I go to the video tab in iChat it tells me that video conferencing is unavailable on this computer. And the bandwidth meter thing is greyed out. So I don't really know what to do.

help?

[ Reply to This | # ]

Same problem here. I get the "insufficient bandwidth" error when I try and connect. The mic is recognized but I'm unable to adjust the bandwidth preference.

[ Reply to This | # ]

any luck yet?

[ Reply to This | # ]

I thought Apple would have to brilliance to come up with it... guess not.

[ Reply to This | # ]

Actually, iChat AV does support UPnP. I did some packet sniffing and discovered it. See this MacInTouch report for more details.

[ Reply to This | # ]

Well, here it worked perfectly, except when i tried using my iBook for it, which is connected to the 'net through my Cube and its internet sharing. Anyone knows a way of mapping stuff through Internet Sharing?

[ Reply to This | # ]

I find this very interesting, that Apple's own Internet sharing was incapable of handling the new AV traffic. If these programs were open source, folks could identify this and fix it themselves. Sounds like they are doing something strange if router's DMZ settings weren't even sufficient.
[QUOTE]
...where the IT team refuses to open port 5060 claiming exploits for which I can find no sources. As such I need to find a workaround for the fact that 5060 is likely to remain blocked on on this corporate firewall.
[/QUOTE]
Sounds like a bunch of Linux guys who sound like they don't want any more proprietary standards on their firewalls. Do you? Of course, _they_ don't trust Apple. :-)

[QUOTE]
Is there any way to make iChat map its SIP port to a higher port number (which is not blocked)?
[/QUOTE]

See same open source point. But I am glad to see Mac folks coming up with these ideas ourselves. OS X hasn't been out that long really.

[ Reply to This | # ]

How can I changes the setting of my UDP ports?

[ Reply to This | # ]

I have iChat AV working with my NAT router. However, the problem I face is that the most use I have for iChat AV is videoconferencing with people who are as often as not behind a corporate firewall, where the IT team refuses to open port 5060 claiming exploits for which I can find no sources. As such I need to find a workaround for the fact that 5060 is likely to remain blocked on on this corporate firewall.

Is there any way to make iChat map its SIP port to a higher port number (which is not blocked)?


[ Reply to This | # ]

I spent all weekend replacing my 802.11b network, built around my beloved Asante 1004-AL router -- with a new G network, going through Netgear's 108mbps WGT624 router. Getting two PCs, two macs, 1 replaytv and 1 xbox all to be happy on the network was a chore -- but a great reward when done.

So, tonight I go to have a regular iChat/AV pow-wow with an out-of-town friend, and at first it doesn't let me connect at all. Says he's not responding, even if he sent the request. So, I moved my iMac's IP into the DMZ, thinking that would give me a quick fix until I figured out something more permanent. Well, 2 video-freezes and 4-losses-of-audio later, I'm convinced something is awry.

I've read Apple's Web site, it doesn't say my router is supported, but most newer routers aren't on there. I've thought about switching to the newish Belkin 54g router, but hesitate to dump the Netgear so soon if there's a fix (It's got great in-house throughput and range).

So, I ask, will activating port-forwarding make a difference if the DMZ still allowed for problems? Would just fiddling with the iChat bandwidth settings make a difference (as mentioned in earlier post) if they were never a problem before (especially since the cable modem only offers a 10mbs connection to the router anyway).

Should I admit defeat with the Netgear and get back in the trenches with my whole network? Help me, please!

[ Reply to This | # ]

Ive got a linksys wrt54g, and I can only iChat A/V with a friend when i put my mac in the DMZ... opening the usual ports and forwarding through the router seems to have no effect....

[ Reply to This | # ]

I have the Same PROBLEM! I tried DMZ, Port Fowarding, and updating the firmware but no change! finally I tried my old router and it worked fine! I just can't seem to figure it out!
When attempting Video or Audio I get an error message "insufficient bandwidth"
I feel your pain!

[ Reply to This | # ]

Has anyone experienced problems just logging in? I open the ichat program then it asks me to login. I type it in, and then it tries to connect for about 2 seconds and then it asks me again for my password; this happens repeatedly, over and over again. I've tried opening all the recommended ports for ichat through my netgear router, but still get the same thing. I've also tried trashing my preference for ichat, so that when I open it, I'm asked to put in all my info like I'm a new user, and still it gives me the repeated prompt for my password. Please send me an e-mail (springfieldresourcesltd at comcast dot net) if you know how to solve this problem. Thanks in advance for your help!

[ Reply to This | # ]

We have posted a FAQ on our website regarding this issue. This solution should fix the problem for most users.

http://www.blumenthalassociates.com/mod.php?mod=faq&op=show_answer&faq_id=25

We can also remotely perform this work for you if you would like us to. Please feel free to contact us.
Blumenthal Associates, Ltd.


[ Reply to This | # ]