Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Por forwarding for 3cx Pbx external users

    Scheduled Pinned Locked Moved NAT
    4 Posts 2 Posters 530 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mazide
      last edited by mazide

      Hi all
      I have two VMs (Pfsense and Ubuntu 3CX phone system), my cell phone is connected to the local network via the openvpn that i setup on pfsense. Now i am trying to make a call from 3cx app on my iphone but it is not working.
      I set up a NAT that allow almost all port from any to any, but still not working.
      when i am connect directly to my local network without the vpn, everything work perfect.
      The Vpn works perfect, i can eccess to shared file on my lan from anywhere.
      I appreciate your help.
      d.PNG

      1 Reply Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire
        last edited by

        Is the hostname resolving to the LAN IP when you're on the VPN? (the phone isn't caching it?) What happens if you change the destination to */any?

        Why not just let the app connect to the WAN IP? It encrypts the traffic anyway.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote ๐Ÿ‘ helpful posts!

        M 1 Reply Last reply Reply Quote 0
        • M
          mazide @SteveITS
          last edited by

          Hi @teamits I didn't try host resolution but ping is successful.
          the pbx is not reachable directly from wan, user need to be connected from vpn.
          Thanks.

          1 Reply Last reply Reply Quote 0
          • S
            SteveITS Galactic Empire
            last edited by

            In cases like this I would try enabling the "Log packets matched from the default block rules in the ruleset" option in the log settings temporarily and see if something else is blocking the traffic. For remote mobile apps I believe 3CX just needs port 5090, since for the servers we host in our data center we have just that and the management port 5001 open.

            Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
            When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
            Upvote ๐Ÿ‘ helpful posts!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.