Hello
we have been using EFW for several years now and we are extremely happy with this solution. Congratulations to the team for a great product!
last week we updated to EFW 2.2 and we have been unable since to configure our remote phones to work properly. We are using a Trixbox PRO server behind the firewall and we forwarded all required ports as per the official documentation and our previous setup, namely:
TCP ANY : 8000 => 192.168.0.23 : 8000 Trixbox VPN
TCP ANY : 9000 => 192.168.0.23 : 9000 Trixbox VPN
TCP ANY : 6600 => 192.168.0.23 : 6600 Trixbox HUD2
TCP ANY : 5222 => 192.168.0.23 : 5222 Trixbox HUD3
UDP ANY : 4569 => 192.168.0.23 : 4569 Trixbox IAX2
UDP ANY : 10000 - 20000 => 192.168.0.23 :10000 - 20000 Trixbox RTP
UDP ANY : 3000 - 4000 => 192.168.0.23 : 3000 - 4000 Trixbox RTP - Aastra
UDP ANY : 5060 => 192.168.0.23 : 5060 Trixbox SIP
TCP ANY : 32 => 192.168.0.23 : 22(SSH) SSH trixbox
the outgoing firewall is disabled, and SIP proxy is enabled in transparent mode. The same setup has been working properly before with EFW 2.1
the diagnostic tool from the Trixbox PRO shows that connection can be established on all ports except for port 5060. However, remote phones manage to register to the Asterisk server.
Whenever we initiate a call to/from a remote extension - the phones ring but there is no audio either way. I am completely baffled by this and am running out of options. Does anyone have any ideas on what we can try?
I am confused on whether we need to use source NAT (set to NO NAT) and whether SIP proxy should be on. Since the problem seems to occur on 5060 I am assuming this is somehow related to the SIP proxy intercepting communication. However, the phones ring each other which I undertand it as a connection being established.
Any ideas would be highly appreciated. Thanks in advance for your help.
best regards,
~mircea
Author