Netgate SG-1000 microFirewall

Author Topic: [solved]voip nat over pfsense with open vpn  (Read 129 times)

0 Members and 1 Guest are viewing this topic.

Offline choko

  • Newbie
  • *
  • Posts: 18
  • Karma: +0/-0
    • View Profile
[solved]voip nat over pfsense with open vpn
« on: February 06, 2018, 03:24:21 am »
hello, ihave an openvpn site-to-site between 2 pfsense ,it work fine. i istalled a xivo voip server on one side.locally it work,but when i try to connect this server from other side i cant, i can ping the server from my PC but the softphone cant connect.
i this a nat or forwarding port that i must do.
i thinked that i dont need to forward the port 5060 for voip because it pass trough the vpn tunnel and i have the rule openvpn that allow all traffic through the tunnel vpn,it is not sufficient.
i read too about  Siproxd package  who can be installed on the pfsense on the second side.
can you help me to choose what solution i have to do to make it work correctly.
thanks
« Last Edit: February 15, 2018, 01:13:40 am by choko »

Offline choko

  • Newbie
  • *
  • Posts: 18
  • Karma: +0/-0
    • View Profile
Re: voip nat over pfsense with open vpn
« Reply #1 on: February 06, 2018, 05:38:17 am »
this is how my network work. vpn work correctly ,sharing folder work fine .i can ping the voip server too .

Offline muppet

  • Newbie
  • *
  • Posts: 20
  • Karma: +1/-0
  • I'm a Muppet
    • View Profile
    • Tim H
Re: voip nat over pfsense with open vpn
« Reply #2 on: February 14, 2018, 04:13:06 pm »
Why don't you TCP dump on each pfsense and see what you're seeing?

If you can ping the xivo server, but softphones can't connect, I'd wonder if you need a Firewall rule to allow this traffic, or if the Xivo server isn't configured to listen for VoIP/SIP connections from anything other than 192.168.2.0/24 (i.e you need to add a permit access from 192.168.1/24 rule somewhere, either on the pfSense or maybe the xivo server config)

Offline choko

  • Newbie
  • *
  • Posts: 18
  • Karma: +0/-0
    • View Profile
Re: voip nat over pfsense with open vpn
« Reply #3 on: February 15, 2018, 01:13:18 am »
thanks for the answer,i solved the problem . it was a nat on the xivo who caused that,now all work fine :)