Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Voip.ms Configuration question

    Scheduled Pinned Locked Moved NAT
    2 Posts 1 Posters 470 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User
      last edited by

      Good day,
      I'm struggling to make my setup to work and I've been reading a lot but I think I'm not qualified enough at this point to troubleshoot my issue... (My ata is not registering with voip.ms).

      I've setup pfsense with 1wan (pppoe-dhcp) / 1lan (10.32.50.1) interfaces.
      I have a sip ata configured at 10.32.50.6. (It used to work before I replace my home router with my pfsense appliance.
      I have not create any particular firewall rule except the one created by default.
      I read [https://www.netgate.com/docs/pfsense/nat/configuring-nat-for-voip-phones.html](link url).

      I set my firewall optimization to conservative but I don't understand how to "Disable source port rewriting" from the instructions tutorial. Also, if I figure how to "Disable source port rewriting" will that prevent my other sip clients to work (I use GroundWire on IOS and it seams to work even if it take a little bit longer to register than before).

      My Ata is a cisco spa-112.

      Any help would be very appreciated.

      <?xml version="1.0"?>
      <pfsense>
      	<version>18.8</version>
      	<lastchange></lastchange>
      	<system>
      		<optimization>normal</optimization>
      		<hostname>gateway1</hostname>
      		<domain>maison.lan</domain>
      		<dnsserver>8.8.8.8</dnsserver>
      		<dnsserver>8.8.4.4</dnsserver>
      		<dnsallowoverride>on</dnsallowoverride>
      		<group>
      			<name>all</name>
      			<description><![CDATA[All Users]]></description>
      			<scope>system</scope>
      			<gid>1998</gid>
      		</group>
      		<group>
      			<name>admins</name>
      			<description><![CDATA[System Administrators]]></description>
      			<scope>system</scope>
      			<gid>1999</gid>
      			<member>0</member>
      			<member>2000</member>
      			<priv>page-all</priv>
      		</group>
      		<user>
      			<name>admin</name>
      			<descr><![CDATA[System Administrator]]></descr>
      			<scope>system</scope>
      			<groupname>admins</groupname>
      			<bcrypt-hash>xxx</bcrypt-hash>
      			<uid>0</uid>
      			<priv>user-shell-access</priv>
      		</user>
      		<user>
      			<scope>user</scope>
      			<bcrypt-hash>xxx</bcrypt-hash>
      			<descr></descr>
      			<name>zzz</name>
      			<expires></expires>
      			<dashboardcolumns>2</dashboardcolumns>
      			<authorizedkeys></authorizedkeys>
      			<ipsecpsk></ipsecpsk>
      			<webguicss>pfSense.css</webguicss>
      			<uid>2000</uid>
      			<cert>xxx</cert>
      		</user>
      		<nextuid>2001</nextuid>
      		<nextgid>2000</nextgid>
      		<timeservers>0.pfsense.pool.ntp.org</timeservers>
      		<webgui>
      			<protocol>http</protocol>
      			<loginautocomplete></loginautocomplete>
      			<ssl-certref>xxx</ssl-certref>
      			<althostnames></althostnames>
      			<dashboardcolumns>2</dashboardcolumns>
      		</webgui>
      		<disablenatreflection>yes</disablenatreflection>
      		<disablesegmentationoffloading></disablesegmentationoffloading>
      		<disablelargereceiveoffloading></disablelargereceiveoffloading>
      		<ipv6allow></ipv6allow>
      		<maximumtableentries>400000</maximumtableentries>
      		<powerd_ac_mode>hadp</powerd_ac_mode>
      		<powerd_battery_mode>hadp</powerd_battery_mode>
      		<powerd_normal_mode>hadp</powerd_normal_mode>
      		<bogons>
      			<interval>monthly</interval>
      		</bogons>
      		<already_run_config_upgrade></already_run_config_upgrade>
      		<timezone>Etc/GMT-5</timezone>
      	</system>
      	<interfaces>
      		<wan>
      			<enable></enable>
      			<if>pppoe0</if>
      			<mtu>1492</mtu>
      			<ipaddr>pppoe</ipaddr>
      			<ipaddrv6>dhcp6</ipaddrv6>
      			<gateway></gateway>
      			<media></media>
      			<mediaopt></mediaopt>
      			<dhcp6-duid></dhcp6-duid>
      			<dhcp6-ia-pd-len>0</dhcp6-ia-pd-len>
      		</wan>
      		<lan>
      			<enable></enable>
      			<if>vmx0</if>
      			<descr><![CDATA[LAN]]></descr>
      			<ipaddr>10.32.50.1</ipaddr>
      			<subnet>24</subnet>
      			<spoofmac></spoofmac>
      		</lan>
      	</interfaces>
      	<staticroutes></staticroutes>
      	<dhcpd>
      		<lan>
      			<range>
      				<from>10.32.50.100</from>
      				<to>10.32.50.200</to>
      			</range>
      			<enable></enable>
      			<failover_peerip></failover_peerip>
      			<dhcpleaseinlocaltime></dhcpleaseinlocaltime>
      			<defaultleasetime></defaultleasetime>
      			<maxleasetime></maxleasetime>
      			<netmask></netmask>
      			<dnsserver>10.32.50.1</dnsserver>
      			<dnsserver>1.1.1.1</dnsserver>
      			<dnsserver>1.0.0.1</dnsserver>
      			<gateway></gateway>
      			<domain>maison.lan</domain>
      			<domainsearchlist></domainsearchlist>
      			<ignorebootp></ignorebootp>
      			<nonak></nonak>
      			<ddnsdomain></ddnsdomain>
      			<ddnsdomainprimary></ddnsdomainprimary>
      			<ddnsdomainkeyname></ddnsdomainkeyname>
      			<ddnsdomainkeyalgorithm>hmac-md5</ddnsdomainkeyalgorithm>
      			<ddnsdomainkey></ddnsdomainkey>
      			<mac_allow></mac_allow>
      			<mac_deny></mac_deny>
      			<ddnsclientupdates>allow</ddnsclientupdates>
      			<tftp></tftp>
      			<ldap></ldap>
      			<nextserver></nextserver>
      			<filename></filename>
      			<filename32></filename32>
      			<filename64></filename64>
      			<rootpath></rootpath>
      			<numberoptions></numberoptions>
      		</lan>
      	</dhcpd>
      	<dhcpdv6>
      		<lan>
      			<range>
      				<from>::1000</from>
      				<to>::2000</to>
      			</range>
      			<ramode>assist</ramode>
      			<rapriority>medium</rapriority>
      		</lan>
      	</dhcpdv6>
      	<snmpd>
      		<syslocation></syslocation>
      		<syscontact></syscontact>
      		<rocommunity>public</rocommunity>
      	</snmpd>
      	<diag>
      		<ipv6nat>
      			<ipaddr></ipaddr>
      		</ipv6nat>
      	</diag>
      	<syslog>
      		<filterdescriptions>1</filterdescriptions>
      	</syslog>
      	<nat>
      		<outbound>
      			<mode>automatic</mode>
      		</outbound>
      	</nat>
      	<filter>
      		<rule>
      			<id></id>
      			<tracker>1542335161</tracker>
      			<type>pass</type>
      			<interface>wan</interface>
      			<ipprotocol>inet</ipprotocol>
      			<tag></tag>
      			<tagged></tagged>
      			<max></max>
      			<max-src-nodes></max-src-nodes>
      			<max-src-conn></max-src-conn>
      			<max-src-states></max-src-states>
      			<statetimeout></statetimeout>
      			<statetype><![CDATA[keep state]]></statetype>
      			<os></os>
      			<protocol>udp</protocol>
      			<source>
      				<any></any>
      			</source>
      			<destination>
      				<network>wanip</network>
      				<port>1194</port>
      			</destination>
      			<descr><![CDATA[OpenVPN  wizard]]></descr>
      			<created>
      				<time>1542335161</time>
      				<username>OpenVPN Wizard</username>
      			</created>
      			<updated>
      				<time>1542336265</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</updated>
      		</rule>
      		<rule>
      			<id></id>
      			<tracker>1542331592</tracker>
      			<type>block</type>
      			<interface>lan</interface>
      			<ipprotocol>inet</ipprotocol>
      			<tag></tag>
      			<tagged></tagged>
      			<max></max>
      			<max-src-nodes></max-src-nodes>
      			<max-src-conn></max-src-conn>
      			<max-src-states></max-src-states>
      			<statetimeout></statetimeout>
      			<statetype><![CDATA[keep state]]></statetype>
      			<os></os>
      			<protocol>tcp/udp</protocol>
      			<source>
      				<address>Serveurs</address>
      			</source>
      			<destination>
      				<any></any>
      			</destination>
      			<descr></descr>
      			<created>
      				<time>1542331592</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</created>
      			<updated>
      				<time>1542333685</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</updated>
      		</rule>
      		<rule>
      			<id></id>
      			<tracker>1542331575</tracker>
      			<type>block</type>
      			<interface>lan</interface>
      			<ipprotocol>inet</ipprotocol>
      			<tag></tag>
      			<tagged></tagged>
      			<max></max>
      			<max-src-nodes></max-src-nodes>
      			<max-src-conn></max-src-conn>
      			<max-src-states></max-src-states>
      			<statetimeout></statetimeout>
      			<statetype><![CDATA[keep state]]></statetype>
      			<os></os>
      			<protocol>tcp/udp</protocol>
      			<source>
      				<address>Cameras</address>
      			</source>
      			<destination>
      				<any></any>
      			</destination>
      			<descr></descr>
      			<created>
      				<time>1542331575</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</created>
      			<updated>
      				<time>1542333697</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</updated>
      		</rule>
      		<rule>
      			<id></id>
      			<tracker>1542331535</tracker>
      			<type>block</type>
      			<interface>lan</interface>
      			<ipprotocol>inet</ipprotocol>
      			<tag></tag>
      			<tagged></tagged>
      			<max></max>
      			<max-src-nodes></max-src-nodes>
      			<max-src-conn></max-src-conn>
      			<max-src-states></max-src-states>
      			<statetimeout></statetimeout>
      			<statetype><![CDATA[keep state]]></statetype>
      			<os></os>
      			<protocol>tcp/udp</protocol>
      			<source>
      				<address>IoT</address>
      			</source>
      			<destination>
      				<any></any>
      			</destination>
      			<descr></descr>
      			<created>
      				<time>1542331535</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</created>
      			<updated>
      				<time>1542333705</time>
      				<username>admin@10.32.50.157 (Local Database)</username>
      			</updated>
      		</rule>
      		<rule>
      			<type>pass</type>
      			<ipprotocol>inet</ipprotocol>
      			<descr><![CDATA[Default allow LAN to any rule]]></descr>
      			<interface>lan</interface>
      			<tracker>0100000101</tracker>
      			<source>
      				<network>lan</network>
      			</source>
      			<destination>
      				<any></any>
      			</destination>
      		</rule>
      		<rule>
      			<type>pass</type>
      			<ipprotocol>inet6</ipprotocol>
      			<descr><![CDATA[Default allow LAN IPv6 to any rule]]></descr>
      			<interface>lan</interface>
      			<tracker>0100000102</tracker>
      			<source>
      				<network>lan</network>
      			</source>
      			<destination>
      				<any></any>
      			</destination>
      		</rule>
      		<rule>
      			<descr><![CDATA[OpenVPN  wizard]]></descr>
      			<source>
      				<any></any>
      			</source>
      			<destination>
      				<any></any>
      			</destination>
      			<interface>openvpn</interface>
      			<type>pass</type>
      			<enabled>on</enabled>
      			<tracker>1542335162</tracker>
      			<created>
      				<time>1542335161</time>
      				<username>OpenVPN Wizard</username>
      			</created>
      		</rule>
      		<separator>
      			<lan></lan>
      		</separator>
      	</filter>
      	<shaper></shaper>
      	<ipsec></ipsec>
      	<aliases>
      		<alias>
      			<name>zzz</name>
      			<type>host</type>
      			<address>zzz</address>
      			<descr><![CDATA[IP Cameras]]></descr>
      			<detail><![CDATA[zzz]></detail>
      		</alias>
      		<alias>
      			<name>IoT</name>
      			<type>host</type>
      			<address>zzz</address>
      			<descr></descr>
      			<detail><![CDATA[zzz]]></detail>
      		</alias>
      		<alias>
      			<name>Serveurs</name>
      			<type>host</type>
      			<address>zzz</address>
      			<descr></descr>
      			<detail><![CDATA[zzz]]></detail>
      		</alias>
      	</aliases>
      	<proxyarp></proxyarp>
      	<cron>
      		<item>
      			<minute>1,31</minute>
      			<hour>0-5</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 adjkerntz -a</command>
      		</item>
      		<item>
      			<minute>1</minute>
      			<hour>3</hour>
      			<mday>1</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
      		</item>
      		<item>
      			<minute>*/60</minute>
      			<hour>*</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshguard</command>
      		</item>
      		<item>
      			<minute>*/60</minute>
      			<hour>*</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 webConfiguratorlockout</command>
      		</item>
      		<item>
      			<minute>1</minute>
      			<hour>1</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
      		</item>
      		<item>
      			<minute>*/60</minute>
      			<hour>*</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
      		</item>
      		<item>
      			<minute>30</minute>
      			<hour>12</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
      		</item>
      		<item>
      			<minute>1</minute>
      			<hour>0</hour>
      			<mday>*</mday>
      			<month>*</month>
      			<wday>*</wday>
      			<who>root</who>
      			<command>/usr/bin/nice -n20 /etc/rc.update_pkg_metadata</command>
      		</item>
      	</cron>
      	<wol></wol>
      	<rrd>
      		<enable></enable>
      		<category>left=system-processor&amp;right=&amp;resolution=300&amp;timePeriod=-1d&amp;startDate=&amp;endDate=&amp;startTime=0&amp;endTime=0&amp;graphtype=line&amp;invert=true&amp;refresh-interval=0</category>
      	</rrd>
      	<load_balancer>
      		<monitor_type>
      			<name>ICMP</name>
      			<type>icmp</type>
      			<descr><![CDATA[ICMP]]></descr>
      			<options></options>
      		</monitor_type>
      		<monitor_type>
      			<name>TCP</name>
      			<type>tcp</type>
      			<descr><![CDATA[Generic TCP]]></descr>
      			<options></options>
      		</monitor_type>
      		<monitor_type>
      			<name>HTTP</name>
      			<type>http</type>
      			<descr><![CDATA[Generic HTTP]]></descr>
      			<options>
      				<path>/</path>
      				<host></host>
      				<code>200</code>
      			</options>
      		</monitor_type>
      		<monitor_type>
      			<name>HTTPS</name>
      			<type>https</type>
      			<descr><![CDATA[Generic HTTPS]]></descr>
      			<options>
      				<path>/</path>
      				<host></host>
      				<code>200</code>
      			</options>
      		</monitor_type>
      		<monitor_type>
      			<name>SMTP</name>
      			<type>send</type>
      			<descr><![CDATA[Generic SMTP]]></descr>
      			<options>
      				<send></send>
      				<expect>220 *</expect>
      			</options>
      		</monitor_type>
      	</load_balancer>
      	<widgets>
      		<sequence>system_information:col1:open:0,interfaces:col2:open:0</sequence>
      		<period>10</period>
      	</widgets>
      	<openvpn>
      		<openvpn-server>
      			<vpnid>1</vpnid>
      			<mode>server_tls_user</mode>
      			<authmode>Local Database</authmode>
      			<protocol>UDP4</protocol>
      			<dev_mode>tun</dev_mode>
      			<interface>wan</interface>
      			<ipaddr></ipaddr>
      			<local_port>1195</local_port>
      			<description></description>
      			<custom_options></custom_options>
      			<tls>zzz</tls>
      			<tls_type>auth</tls_type>
      			<caref>zzz</caref>
      			<crlref></crlref>
      			<certref>zzz</certref>
      			<dh_length>2048</dh_length>
      			<ecdh_curve>none</ecdh_curve>
      			<cert_depth>1</cert_depth>
      			<strictusercn></strictusercn>
      			<crypto>AES-128-CBC</crypto>
      			<digest>SHA256</digest>
      			<engine>none</engine>
      			<tunnel_network>10.8.0.0/24</tunnel_network>
      			<tunnel_networkv6></tunnel_networkv6>
      			<remote_network></remote_network>
      			<remote_networkv6></remote_networkv6>
      			<gwredir></gwredir>
      			<gwredir6></gwredir6>
      			<local_network>10.32.50.0/24</local_network>
      			<local_networkv6></local_networkv6>
      			<maxclients>4</maxclients>
      			<compression></compression>
      			<compression_push></compression_push>
      			<passtos></passtos>
      			<client2client></client2client>
      			<dynamic_ip>yes</dynamic_ip>
      			<topology>subnet</topology>
      			<serverbridge_dhcp></serverbridge_dhcp>
      			<serverbridge_interface>none</serverbridge_interface>
      			<serverbridge_routegateway></serverbridge_routegateway>
      			<serverbridge_dhcp_start></serverbridge_dhcp_start>
      			<serverbridge_dhcp_end></serverbridge_dhcp_end>
      			<dns_domain>maison.lan</dns_domain>
      			<dns_server1>10.32.50.1</dns_server1>
      			<dns_server2>1.1.1.1</dns_server2>
      			<dns_server3>1.0.0.1</dns_server3>
      			<dns_server4></dns_server4>
      			<sndrcvbuf></sndrcvbuf>
      			<ntp_server1>10.32.50.1</ntp_server1>
      			<ntp_server2></ntp_server2>
      			<netbios_enable>yes</netbios_enable>
      			<netbios_ntype>0</netbios_ntype>
      			<netbios_scope></netbios_scope>
      			<create_gw>both</create_gw>
      			<verbosity_level>1</verbosity_level>
      			<nbdd_server1></nbdd_server1>
      			<ncp-ciphers>AES-128-GCM</ncp-ciphers>
      			<ncp_enable>enabled</ncp_enable>
      		</openvpn-server>
      	</openvpn>
      	<dnshaper></dnshaper>
      	<unbound>
      		<enable></enable>
      		<dnssec></dnssec>
      		<active_interface></active_interface>
      		<outgoing_interface></outgoing_interface>
      		<custom_options></custom_options>
      		<hideidentity></hideidentity>
      		<hideversion></hideversion>
      		<dnssecstripped></dnssecstripped>
      	</unbound>
      	<revision>
      		<time>1542336444</time>
      		<description><![CDATA[admin@10.32.50.157 (Local Database): Widget configuration has been changed.]]></description>
      		<username>admin@10.32.50.157 (Local Database)</username>
      	</revision>
      	<cert>
      		<refid>zzz</refid>
      		<descr><![CDATA[webConfigurator default (zzz)]]></descr>
      		<type>server</type>
      		<crt>zzz</crt>
      		<prv>zzz</prv>
      	</cert>
      	<cert>
      		<refid>zzz</refid>
      		<descr><![CDATA[CN1]]></descr>
      		<type>server</type>
      		<caref>zzz</caref>
      		<crt>zzz</crt>
      		<prv>zzz</prv>
      	</cert>
      	<cert>
      		<refid>zzz</refid>
      		<descr><![CDATA[zzz]]></descr>
      		<type>user</type>
      		<caref>5bee2ab9547ae</caref>
      		<crt>zzz</crt>
      		<prv>zzz</prv>
      	</cert>
      	<ppps>
      		<ppp>
      			<ptpid>0</ptpid>
      			<type>pppoe</type>
      			<if>pppoe0</if>
      			<ports>vmx1</ports>
      			<username>zzz</username>
      			<password>zzz</password>
      		</ppp>
      	</ppps>
      	<installedpackages>
      		<package>
      			<name>Open-VM-Tools</name>
      			<descr><![CDATA[VMware Tools is a suite of utilities that enhances the performance of the virtual machine's guest operating system and improves management of the virtual machine.]]></descr>
      			<website>http://open-vm-tools.sourceforge.net/</website>
      			<version>10.1.0,1</version>
      			<pkginfolink>https://doc.pfsense.org/index.php/Open_VM_Tools_package</pkginfolink>
      			<configurationfile>open-vm-tools.xml</configurationfile>
      			<include_file>/usr/local/pkg/open-vm-tools.inc</include_file>
      		</package>
      		<package>
      			<name>iperf</name>
      			<website>http://www.freshports.org/benchmarks/iperf/</website>
      			<descr><![CDATA[Iperf is a tool for testing network throughput, loss, and jitter.]]></descr>
      			<version>2.0.5.5_3</version>
      			<pkginfolink>https://doc.pfsense.org/index.php/Iperf_package</pkginfolink>
      			<configurationfile>iperf.xml</configurationfile>
      			<tabs>
      				<tab>
      					<text><![CDATA[Client]]></text>
      					<url>/pkg_edit.php?xml=iperf.xml</url>
      					<active></active>
      				</tab>
      				<tab>
      					<text><![CDATA[Server]]></text>
      					<url>/pkg_edit.php?xml=iperfserver.xml</url>
      				</tab>
      			</tabs>
      		</package>
      		<package>
      			<name>OpenVPN Client Export Utility</name>
      			<internal_name>openvpn-client-export</internal_name>
      			<descr><![CDATA[Allows a pre-configured OpenVPN Windows Client or Mac OS X's Viscosity configuration bundle to be exported directly from pfSense.]]></descr>
      			<version>1.4.18</version>
      			<configurationfile>openvpn-client-export.xml</configurationfile>
      			<tabs>
      				<tab>
      					<name>Client Export</name>
      					<tabgroup>OpenVPN</tabgroup>
      					<url>/vpn_openvpn_export.php</url>
      				</tab>
      				<tab>
      					<name>Shared Key Export</name>
      					<tabgroup>OpenVPN</tabgroup>
      					<url>/vpn_openvpn_export_shared.php</url>
      				</tab>
      			</tabs>
      			<include_file>/usr/local/pkg/openvpn-client-export.inc</include_file>
      		</package>
      		<service>
      			<name>vmware-guestd</name>
      			<rcfile>vmware-guestd.sh</rcfile>
      			<custom_php_service_status_command>mwexec(&quot;/usr/local/etc/rc.d/vmware-guestd status&quot;) == 0;</custom_php_service_status_command>
      			<description><![CDATA[VMware Guest Daemon]]></description>
      		</service>
      		<service>
      			<name>vmware-kmod</name>
      			<rcfile>vmware-kmod.sh</rcfile>
      			<custom_php_service_status_command>mwexec(&quot;/usr/local/etc/rc.d/vmware-kmod status&quot;) == 0;</custom_php_service_status_command>
      			<description><![CDATA[VMware Kernel Modules]]></description>
      		</service>
      		<service>
      			<name>iperf</name>
      			<executable>iperf</executable>
      			<description><![CDATA[iperf Network Performance Testing Daemon/Client]]></description>
      			<stopcmd>mwexec(&quot;/usr/bin/killall iperf&quot;);</stopcmd>
      		</service>
      		<menu>
      			<name>iperf Client</name>
      			<tooltiptext>Run iperf in client mode.</tooltiptext>
      			<section>Diagnostics</section>
      			<url>/pkg_edit.php?xml=iperf.xml</url>
      		</menu>
      		<menu>
      			<name>iperf Server</name>
      			<tooltiptext>Run iperf in server mode.</tooltiptext>
      			<section>Diagnostics</section>
      			<url>/pkg_edit.php?xml=iperfserver.xml</url>
      		</menu>
      		<vpn_openvpn_export>
      			<serverconfig>
      				<item>
      					<pass></pass>
      					<proxypass></proxypass>
      					<server>1</server>
      					<useaddr>other</useaddr>
      					<useaddr_hostname>zzz</useaddr_hostname>
      					<verifyservercn>auto</verifyservercn>
      					<blockoutsidedns></blockoutsidedns>
      					<legacy></legacy>
      					<randomlocalport></randomlocalport>
      					<usepkcs11></usepkcs11>
      					<pkcs11providers></pkcs11providers>
      					<usetoken></usetoken>
      					<usepass></usepass>
      					<useproxy></useproxy>
      					<useproxytype>http</useproxytype>
      					<proxyaddr></proxyaddr>
      					<proxyport></proxyport>
      					<useproxypass>none</useproxypass>
      					<proxyuser></proxyuser>
      					<advancedoptions></advancedoptions>
      				</item>
      			</serverconfig>
      			<defaultsettings>
      				<pass></pass>
      				<proxypass></proxypass>
      				<server>1</server>
      				<useaddr>other</useaddr>
      				<useaddr_hostname></useaddr_hostname>
      				<verifyservercn>auto</verifyservercn>
      				<blockoutsidedns></blockoutsidedns>
      				<legacy></legacy>
      				<randomlocalport></randomlocalport>
      				<usepkcs11></usepkcs11>
      				<pkcs11providers></pkcs11providers>
      				<usetoken></usetoken>
      				<usepass></usepass>
      				<useproxy></useproxy>
      				<useproxytype>http</useproxytype>
      				<proxyaddr></proxyaddr>
      				<proxyport></proxyport>
      				<useproxypass>none</useproxypass>
      				<proxyuser></proxyuser>
      				<advancedoptions></advancedoptions>
      			</defaultsettings>
      		</vpn_openvpn_export>
      	</installedpackages>
      	<gateways></gateways>
      	<ovpnserver>
      		<step1>
      			<type>local</type>
      		</step1>
      		<step6>
      			<authcertca>zzz</authcertca>
      			<uselist>on</uselist>
      			<certca><![CDATA[Certificate1]]></certca>
      			<keylength>2048</keylength>
      			<lifetime>3650</lifetime>
      			<country>CA</country>
      			<state><![CDATA[QC]]></state>
      			<city><![CDATA[GAT]]></city>
      			<organization><![CDATA[maison.lan]]></organization>
      		</step6>
      		<step9>
      			<certname><![CDATA[CN1]]></certname>
      			<keylength>2048</keylength>
      			<lifetime>3650</lifetime>
      			<country>CA</country>
      			<state><![CDATA[QC]]></state>
      			<city><![CDATA[GAT]]></city>
      			<organization><![CDATA[maison.lan]]></organization>
      			<uselist>on</uselist>
      		</step9>
      		<step10>
      			<interface>wan</interface>
      			<protocol>UDP4</protocol>
      			<localport>1194</localport>
      			<tlsauth>on</tlsauth>
      			<gentlskey>on</gentlskey>
      			<dhkey>2048</dhkey>
      			<crypto>AES-128-CBC</crypto>
      			<digest>SHA256</digest>
      			<engine>none</engine>
      			<tunnelnet>10.8.0.0/24</tunnelnet>
      			<localnet>10.32.50.0/24</localnet>
      			<concurrentcon>4</concurrentcon>
      			<dynip>on</dynip>
      			<topology>subnet</topology>
      			<defaultdomain>maison.lan</defaultdomain>
      			<dns1>10.32.50.1</dns1>
      			<dns2>1.1.1.1</dns2>
      			<dns3>1.0.0.1</dns3>
      			<ntp1>10.32.50.1</ntp1>
      			<nbtenable>on</nbtenable>
      			<nbttype>0</nbttype>
      		</step10>
      		<step11>
      			<ovpnrule>on</ovpnrule>
      			<ovpnallow>on</ovpnallow>
      		</step11>
      	</ovpnserver>
      	<ca>
      		<refid>5bee2ab9547ae</refid>
      		<descr><![CDATA[Certificate1]]></descr>
      		<crt>zzz</crt>
      		<prv>zzz</prv>
      		<serial>2</serial>
      	</ca>
      	<dyndnses>
      		<dyndns>
      			<type>zzz</type>
      			<username>zzz</username>
      			<password>zzz</password>
      			<host>zzz</host>
      			<domainname></domainname>
      			<mx></mx>
      			<enable></enable>
      			<interface>wan</interface>
      			<zoneid></zoneid>
      			<ttl></ttl>
      			<updateurl></updateurl>
      			<resultmatch></resultmatch>
      			<requestif>wan</requestif>
      			<descr></descr>
      			<id>0</id>
      		</dyndns>
      	</dyndnses>
      </pfsense>
      
      1 Reply Last reply Reply Quote 0
      • ?
        A Former User
        last edited by

        Can't anyone help me ?
        I tried pretty much everything I could imagine..
        I've tried also with siproxd without success either.
        As soon as I remove my pfsense appliance and return to my previous router voip is working.
        I can see that sip is working (registration is ok in the Ata and it show inbound and outbound sip traffic) but for rtp, only outbound and 0 inbound traffic....

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.