Pfsense and trixbox NAT port 5060 registering issues



  • I have pfsense 1.2.3 and i have a trixbox behind the firewall and i cant get it register the phones.

    I have tried NAT with for 5060 fwd to trixbox ip and still no register.

    I have read the getting SIP 5060 to work through pfsense is pretty tough. Can anybody guid em in the direction of getting this to work.

    SIP.conf in trixbox is as follows

    externhost=jasperXXXXXXXXX.XXXXXXXX.com
    localnet=192.168.1.0/255.255.255.0
    nat=yes

    I have tried outbound nat but no luck



  • hi,

    i'm not sure if there's SIP issues but maybe you can post a rough topology of your network and firewall/nat settings in pfsense for the community to look at?



  • Dsl line to modem ppoe on dsl modem into wan side of pfsense box.

    I have ports 5060, 10000through 20000 and 4569 forwarded to 192.168.20 which is the trix also
    Have rules set as well. I see the the trixbox sees the connection but it never connects.



  • I am not sure what the issue is the trixbox sees the connection but dont connect.

    I read that alos of people have to use siproxd. I have tried it as well and still jo luck but i not sure on how to correctly set it up.



  • @jarvists:

    Dsl line to modem ppoe on dsl modem into wan side of pfsense box.

    I have ports 5060, 10000through 20000 and 4569 forwarded to 192.168.20 which is the trix also
    Have rules set as well. I see the the trixbox sees the connection but it never connects.

    Whats the wan address of your pfsense box?  Private space?

    If it is your double NAT'd

    VOIP doesn't like being behind a NAT device let alone two…  Can you put your modem in bridge mode and set up your pfsense box to do the pppoe?



  • VOIP doesn't like being behind a NAT device let alone two…  Can you put your modem in bridge mode and set up your pfsense box to do the pppoe?

    The wan address is 76.XX.XX.XX BG0 lan bg0 is 192.168.0.1. The adress the modem is 192.168.0.1. that as in the config GUI. the modem is a speedstream 4100. It is just a dsl moden router.



  • 76.XX.XX.XX

    Of your pfsense WAN?

    The part of your dsl modem being a router is what Im trying to understand.  If its actually routing and not in bridge mode then its likely your problem. If your pfsense box actually has the public IP address then something else is up…



  • The address of the wan is my public ip address. I can see the trixbox try to register but it never does



  • Did you check all the logs in pfsense?

    I assume the "trixbox try to register" message come from within TrixBox where it receive request for registration etc.



  • Yes when you look at the connections in trixbox this is what to see The ext i have remotely is 1001

    Version

    Asterisk 1.6.0.26-FONCORE-r78 built by root @ revisor.trixbox.com on a i686 running Linux on 2010-06-08 22:01:27 UTC

    Uptime

    System uptime: 12 hours, 36 minutes, 26 seconds
    Last reload: 12 hours, 36 minutes, 26 seconds

    Active Channel(s)

    Peer            User/ANR        Call ID          Format          Hold    Last Message 
    166.137.XXX.XXX (None)          BJhxoO172xH.tvM  0x0 (nothing)    No      Rx: REGISTER             
    166.137.XXX.XXX  (None)          3NCIUI8ELMX.RrO  0x0 (nothing)    No      Rx: REGISTER             
    2 active SIP dialogs

    Sip Registry

    Host                            Username      Refresh State                Reg.Time               
    0 SIP registrations.

    Sip Peers

    Name/username              Host            Dyn Nat ACL Port    Status   
    1004                      (Unspecified)    D  N  A  5060    UNKNOWN   
    1003/1003                  192.168.1.14    D  N  A  5060    OK (90 ms) This is my cisco 7940inside my LAN already.
    1001                      (Unspecified)    D  N  A  5060    UNKNOWN   
    1000                      (Unspecified)    D  N  A  5060    UNKNOWN   
    4 sip peers [Monitored: 1 online, 3 offline Unmonitored: 0 online, 0 offline]



  • Quick Question your LAN subnet is 192.168.1. but your NAT inbound port forwarding is going to 192.168.20. is your trixbox on a VLAN / Different subnet to your IP phones if so why?

    also are you using IAX for one of your trunk providers (Port 4569)


Log in to reply