Audiocodes … 1:1 NAT best choice?
-
There seem to be several different suggested ways to accomplish what I need but I am not sure what is most likely to work. I'd prefer not to use siproxyd or tunnel the connections. I have these four Audiocodes SIP boxes (2 on each side.) They can be configured with an internal IP and an external IP (refered to as !NAT IP.) I do have mutiple static IP's available. Is this what I do:
a) give the boxes the extra external IP's
a) Set 1:1 NAT
b) Set firewall rules on each side to allow WAN:external nat'd IP > LAN = pass
Thanks for any tips!
-
Sounds good. Make sure you audiocodes announce their external IPs by entering the NAT entries at the audiocodes webguis.
The firewall rules should allow udp/tcp from source <remote audiocodes="" public="" ips="">any ports to destination <internal ips="" of="" the="" local="" audiocodes="">any ports.</internal></remote> -
Great thanks and for your previous advice on this… just making sure I understood correctly and providing opportunitys for other to see.
My next question will be about shaping and wether I should just use the wizzard or if I should make shaping rules based on that firewall rule. I haven't looked at this yet so first I will get the box shipped to the remote location and get the connection up and working...When I did the same sort of setup (1:1 NAT and configure the Audiocodes) I was getting intermittant one way audio which I hope that pfsense will remedy with the correct type of NAT (I can only assume Sonicwall 1:1 NAT was not the right "kind")
-
The easiest (and imo best way too) is to add a hosts alias with the IP adresses of the local audiocodes. Then enter this alias in the red field when running the wizard where it asks for VoIP. Calculate the maximum bandwidth your voipchannels could use (for example 4 channels at g711 is about 4*90kbit/s) and set this in the bandwidth dropdown at the VoIP wizard screen.