This post is deleted!
@hescominsoon said in sip issues:
did some digging and here is what i need to happen.
yes this probably is not the preferred or correct way..but it is what needs to happen.
I have tried setting up an outbound nat rule to simulate the same thing..but that isn't working. Right now i have had to put the sophos firewall back so they can conduct business during this week.
i need the firewall to grab the traffic outbound from the .24 internal address and make it look like it is coming from the .194 wan address. The sophos sg firewall has a sip proxy that is handling 3everything and the phone system works fine behind it. it simply refuses to work behind pfsense. would hte sip proxd package handle this for us?
Set inbound firewall rules to point at your WAN from your providers server(s) for the best results. SIP and RTP.
Set "proxy" in the device to point to your firewall's VOIP LAN whatever you have the phone(s) plugged into.
@chpalmer i thought i rad in the documentation to NOT use the siprox package if the pbx was local. also we got the freepbx to announce the traffic correctly..so now it's stimply getting the media to stream back. I have opened 10k-20k form the world and forwarded it to the pbx but nothing there. ``````it works under the linux based sophos firewlal. two nat rules, one is world open for 10-20k forwarded to the pbx and then all traffic from flowroute forwarded to the pbx and it works fine..but under pfsense..no dice. will sipprox fix this? also do i remove the nat/firewlal rules to use sip prox? Is there a way to make this work without sipprox?
Your original post didn't say anything about your PBX being local.
Ive never run my own PBX so cannot comment on that.
i wound up setting two outbound nat rules.
found it in this thread jsut modified the rules for our vendor which is flowroute.
On the Outbound NAT specify a rule for the WAN interface allowing the PBX via UDP out to Destination (SIP trunk IPs) on Destination Port 5060-5061, NAT address = WAN address, NAT PORT = any, STATIC NAT checked
THEN make another rule for Outbound NAT for the WAN interface allowing the PBX via UDP out to Destination = any, Destination Port = any, NAT address = WAN address, NAT PORT = any, STATIC NAT checked