Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall rule to allow SIP traffic

    Firewalling
    3
    4
    140
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      Daq45
      last edited by

      Hi all,
      Please can someone help with configuring firewall rule to allow my SIP trunk provider traffic through the firewall.

      I use Pfsense as my edge firewall/router to the internet, i have a UCM602 on my LAN and now i have configured it for inbound and outbound calls. My provider gave a public IP and he says i should configure my firewall to allow traffic to and from. I have tried and it did work, couldn't call in to get the calls routed to a specified extension on the UCM602.

      Please assist in getting this done.

      S chpalmerC 2 Replies Last reply Reply Quote 0
      • S
        SteveITS Rebel Alliance @Daq45
        last edited by

        @Daq45 That sounds like an appliance you would have on your LAN? Does it tell you what ports it needs open? You would typically create a NAT port forward for each of those to the LAN IP of this device, so the Internet could connect to it.

        Bonus: you can restrict NAT forwards to specific source IPs so as to not allow the entire Internet.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        D 1 Reply Last reply Reply Quote 0
        • chpalmerC
          chpalmer @Daq45
          last edited by

          @Daq45 said in Firewall rule to allow SIP traffic:

          UCM602

          Probably want to use static port on it as well.

          https://docs.netgate.com/pfsense/en/latest/nat/outbound.html#nat-staticport

          Triggering snowflakes one by one..
          Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

          1 Reply Last reply Reply Quote 0
          • D
            Daq45 @SteveITS
            last edited by

            @SteveITS Hello Stevel, thanks for your comment. I have been get it working. Did port forwarding like you advised.

            1 Reply Last reply Reply Quote 1
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.