SIP traffic can't pass for specific network



  • Hello,

    I have a very wired situation with forwarding sip traffic. When I create rules to accept traffic from different sip providers all of them are working except one. I can see with tcpdump that packets are comming but they just don't want to pass through firewall. If I delete the rule for this network I am expecting to see (in the firewall log) that request are blocked, because there is no rule to accept them. Unfortunatelly there is nothing in the log. If I delete all rules and pass all sip traffic from anywhere this particular network is again not working. Firewall version is 2.3.2. Network starts with 85…

    Thanks!



  • Could you give us more information? Show us the rules you have configured (or post your /tmp/rules.debug file) and show the tcdump with the packets or a packet capture on your WAN interface and the inside interface where the packets should be routed to?



  • I never forward SIP nor RTP traffic.

    Better to build firewall rules without adding any port forwarding rules.



  • @chpalmer:

    I never forward SIP nor RTP traffic.

    Better to build firewall rules without adding any port forwarding rules.

    How should I do this? I have virual ip 1.1.1.1 set on the firewall  and server 2.2.2.2 behind the firewall. Now I have nat rule to forward all with src 3.3.3.3:5060 (sip provider) and dst 1.1.1.1:5060  to  2.2.2.2:5060. "Firewall rule association" is automatically created.


Log in to reply