Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall rule to allow SIP traffic

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 456 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D Offline
      Daq45
      last edited by

      Hi all,
      Please can someone help with configuring firewall rule to allow my SIP trunk provider traffic through the firewall.

      I use Pfsense as my edge firewall/router to the internet, i have a UCM602 on my LAN and now i have configured it for inbound and outbound calls. My provider gave a public IP and he says i should configure my firewall to allow traffic to and from. I have tried and it did work, couldn't call in to get the calls routed to a specified extension on the UCM602.

      Please assist in getting this done.

      S chpalmerC 2 Replies Last reply Reply Quote 0
      • S Offline
        SteveITS Rebel Alliance @Daq45
        last edited by

        @Daq45 That sounds like an appliance you would have on your LAN? Does it tell you what ports it needs open? You would typically create a NAT port forward for each of those to the LAN IP of this device, so the Internet could connect to it.

        Bonus: you can restrict NAT forwards to specific source IPs so as to not allow the entire Internet.

        Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
        Upvote 👍 helpful posts!

        D 1 Reply Last reply Reply Quote 0
        • chpalmerC Offline
          chpalmer @Daq45
          last edited by

          @Daq45 said in Firewall rule to allow SIP traffic:

          UCM602

          Probably want to use static port on it as well.

          https://docs.netgate.com/pfsense/en/latest/nat/outbound.html#nat-staticport

          Triggering snowflakes one by one..
          Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

          1 Reply Last reply Reply Quote 0
          • D Offline
            Daq45 @SteveITS
            last edited by

            @SteveITS Hello Stevel, thanks for your comment. I have been get it working. Did port forwarding like you advised.

            1 Reply Last reply Reply Quote 1
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.