Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations John Tel on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Stun Server

Status
Not open for further replies.
jose1000

jose1000

Vendor
Mar 22, 2011
98
AR
Hello
Trying to implement a SIP Trunk.
1) In my office everything works fine.
2) In the customers office
*Registration works fine.
*Outbound calls with only inbound speech.
*No inbound calls.
Looks like a routing/firewall problem.

I have two questions:
1) When i run the Stun procedure, is it done by the IP Office IP or by the Manager IP?
2) My customer programmed their firewall with a roule to "allow" 5060 traffic from the ITSP IP. Shouldnt they make a "forward" roule to the IPOs IP?

Best regards





 
Sort by date Sort by votes
We can't really answer questions regarding your customers firewall, but in my experience unless they actually block SIP then you don't need port forwarding when using registered trunks never mind STUN.
STUN runs from the IPO not Manager
You may need forwarding, they may need to turn off SIP ALG etc on their router
If it's Sonicwall...good luck :)

 
Upvote 0 Downvote
amriddle01,
we've implemented SIP trunks several times with sonicwalls as the firewall and haven't had any issue.
 
Upvote 0 Downvote
Perhaps you bypassed the Sonicwall somehow :-D

I had no problems with Sonicwall so far but had only a few installations with them. But from what I read here they seem to be tricky.
 
Upvote 0 Downvote
Sonicwalls are very easy you just have to setup both the firewall rules and the nat rules - because otherwise the default block all rule stops the SIP working (even sometimes on username authenicated trunks for incoming calls).

It is also easier if you have a dedicated spare public IP address you can use to create a 1-2-1 NAT then you just set the rule to only allow traffic through from the IP addresses of the ITSP.

So if Gamma I would setup an address object of 88.215.55.0/24 and allow any traffic from that object on ports 5060 and 49152-53246 (or whatever I have changed it to on the system) through the firewall and then NAT them to the internal address of the IPO.

Then just ensure consistent NAT is ticked on the VOIP tab and SIP transformations is set correctly for the SIP trunk type and STUN setup.

| ACSS SME |
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

NYSTECH
  • Locked
  • Question
IP Office Migrating from Metal server to Virtual server
Replies
5
Views
417
biv343
biv343
sheldoom
  • Locked
  • Question
Application Server httpd Service Not Running
Replies
1
Views
212
derfloh
derfloh
dencom
  • Question
Avaya Push Notification Provider server certificate update 1
Replies
1
Views
1K
setihound
setihound
BResource
  • Question
Server Edtion Secondary IP Office service wont start
Replies
6
Views
443
derfloh
derfloh
rgunther
  • Locked
  • Question
TTS files for Applications server R12.1 ?
Replies
3
Views
337
rgunther
rgunther

Part and Inventory Search

Sponsor

Back
Top