Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SIP Traffic Not Leaving WAN (pppoe0) on pfSense+ 24.11 x2100 — Worked on CE

    Scheduled Pinned Locked Moved NAT
    1 Posts 1 Posters 38 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      marto26
      last edited by

      I've recently upgraded to a Netgate x2100 running pfSense+, replacing a community edition setup that worked perfectly. Since the upgrade, my SIP phones can no longer register with my hosted VoIP provider.

      Issue

      • SIP 2REGISTER packets are clearly visible leaving the VLAN interface (mvneta1.10 10.10.10.0/24)
      • These packets never appear on the WAN interface (pppoe0)
      • All other traffic (DNS, HTTPS, NTP) from the phones works fine
      • Phones register successfully when bypassing pfSense via a 4G hotspot

      What We've Tried

      • Hybrid NAT with static port rules for SIP phones (source: 10.10.10.0/24 → any, static port enabled)
      • Explicit pass rules on both VLAN and WAN interfaces
      • No SNORT or packet inspection enabled

      State table and packet captures confirm:

      • REGISTERs leave mnveta1.10
      • Nothing ever hits pppoe0
      • No WAN state entries for SIP traffic

      I’ve effectively lost the functionality I had before the upgrade. Is this a known issue with PPPoE + VLAN + static NAT in pfSense+? Any suggestions or workarounds (short of tunnelling SIP via VPN) would be greatly appreciated.

      Many thanks,

      Martin

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.