In order to have a successful deployment of ITC Cloud, In-Telecom advises that the edge firewall is configured with the below:

• Voice Network have it's own VLAN
• Voice Network bypass ALL security features on the firewall, ex. Anti-Virus, Web Filtering, DNS Filtering, etc
• SIP ALG be disabled on the firewall
• The following addresses be allowed outbound from the firewall on the Voice Network
  • endpoints.itccloud.com - FQDN for ITC Cloud
  • des.avaya.com - FQDN for Avaya Phone Provisioning Server
  • rpscloud.yealink.com - FQDN for Yealink Phone Provisioning Server
  • 192.99.54.246 - IP address for Mediatrix ATA Provisioning Server
• The following services be allowed outbound from the firewall on the Voice Network
  • RTP Ports - UDP 3000-65000
  • SIP Ports - TCP and UDP 5080, TLS 5082 
  • ITC Portal Port - TCP 8001
  • ITC Mobile Port - TCP 9002