PfSense 2.4 and BT Cloud base Phone(Polycom)
-
The only way open connections to the phones would be to have port forwards setup to each phone on ports the pbx knows about. That's never going to happen. This sort of setup replies on the phones connecting out to the pbx which can then reply back to the phones via the same connection state. The phones hold that connection open with keep-alive packets if no other traffic is flowing.
It seems that is not happening in your case. For some reason the outgoing state is closing resulting in the firewall hits you see coming in on WAN. And a new state is not being opened.
The phones may not be trying to open it for some reason. Perhaps they are trying to resolve something that's failing.
The traffic from the phones may be being blocked. By Snort/Suricata for example.
The firewall may be opening a state incorrectly and traffic from the phones is using that and never reaching the PBX.
I would take one specific phone, note it's IP and wait for it to lose registration. Then see if it has lost its IP or if it cannot ping out. Run a packet capture on LAN for it's IP and see what it's doing if it's doing anything.
Steve
-
Thanks@stephenw10
But do you think pfsense should normally work out of the box in this scenerio i.e. (x5 BT phones in Lan ,SIP in Cloud) ,without ANY pfsense configtn. e.g FW rule ,Portforwarding etc
Will try out your recommendation ,business permitting. -
Yes.
The only setting you might need is to set the firewall optimisation to conservative if the keep-alive times are too long. But even that is not usually required for recent phones.Steve
-
@stephenw10
Just a quick update -for some odd reason ,this as now working as expected . Not quite sure what resolved my issue.
anyway thanks for your help. -
Hmm, odd. That is what I'd expect though.
Anyway thanks for the update.
Steve
-
@Jid Hello how are you?
Were you able to set up your Polycom in pfsense? -
There should be nothing special required if it's just phones behind pfSense connecting to an external pbx.
Steve
-
@stephenw10
My case is a "polycom VSX 7000" videoconference, I already opened a case in the community, but couldn't find a solution. -
Ah, that's completely different then. Please continue this in your other thread.
Steve
-
@wesleylc1
There should be nothing to set for basic telephones.
