16 ips /28 subnet on wan interface.
-
I did the first solution that you propose and I could access the internet from the host and the host from internet. Although I have a teleconference appliance (linux based) that is not working !!! I can ping the device from the internet and the device can access the internet. But when I try a teleconferencing call it is not working.
I tried the same teleconference device behind a simple adsl router with a static ip and it works !
When this device dials the receiver shows the ip xxx.xxx.xxx.xxx:7020 .
When I use pfsense the receiver rings but it doesn't show the port (7020) and the call cannot be established.???
-
Even if you are bridged, you still need rules allowing inbound traffic to specific ports. Have you set that up?
-
Yes. I can ping from both sides. I wonder if my provider is doing something…
-
I didn't ask if you can ping, I asked if you had rules to allow connection to the port(s) you need.
-
I opened everything (*) from any.
-
If I am reading you correctly, you are saying that calls work if initiated from inside the firewall, but not for inbound calls?
-
I call from inside, the other side rings after 20-30 seconds (too late, the normal is 2-3 seconds) and I answer but the communication is not established.
When I try with a simple adsl router behind a simple isdn with static ip,
I call from inside, the other site can see the ring in 2-3 seconds and the port 7020 after the caller ip and the answer works correctly.
-
Okay, I think I see. Can you do a packet capture on the WAN port, do a call from inside, stop the capture, and look for packets relevant to the host you are calling from?
-
I will try it tomorrow morning when I'll be at my client again. Thank you very much for your interest and your help.
-
;D
Finally it worked with bridged interfaces !!!!! THE PROBLEM WAS THAT MY PROVIDER BLOCKED THE SIP RANGE !!!!!
Now the only thing tha is not working and this time is not my provider's fault is that the port 5060 is blocked. I have any any rule so I wonder why…
-
SOLVED !!!
Everything is ok. The port 5060 was blocked from the teleconference device.
So it works perfectly now with OPT bridged to WAN and assigning the static ip to the teleconference.
Also PASS rule to OPT and Wan is needed.Thanks.