Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




93 posts

Master Geek
+1 received by user: 3


Topic # 144160 9-May-2014 10:36
Send private message

I've moved my Raspberry PBX to a VMWare VM PBX using PBX in a Flash. So far so good - I've got inter-extension calling, outgoing calling etc working great, however I am not able to get incoming calls working, despite replicating settings in the webGUI exactly what my old RaspBX was setup as.

I've got the following ports forwarded to my PBX in a Flash VM

     

  1. 10000 - 20000 TCP & UDP
  2. 5000 - 5500 TCP & UDP

And yet when I tail the asterisk logs with maximum verbosity and make a call from my cell to my number, I get "the party you are trying to reach is unavaialble". At the same time I'm not seeing anything at all in the asterisk logs at all (as in the system is completely idle). I believe if the issue was with my inbound routes or something like that I'd see something in there.

At this point it looks like WxC's end is unable to reach my PBX at all. On closer look at the PBX, I am getting a "STATUS = REQUEST SENT" for SIP registration, and not "REGISTERED" as it should show. What gives?

Create new topic
266 posts

Ultimate Geek
+1 received by user: 26


  Reply # 1040727 9-May-2014 11:15
Send private message

PM me your IP or Phone number and I'll see what's happening.



93 posts

Master Geek
+1 received by user: 3


  Reply # 1040776 9-May-2014 12:35
Send private message

Done -- cheers!

 
 
 
 


266 posts

Ultimate Geek
+1 received by user: 26


  Reply # 1040790 9-May-2014 12:46
Send private message

Actually seeing the INVITE's from WXC to your endpoint time out (pm'd you a ladder map). If your ASTERISK box is not seeing the inbound invite at all i'd look upstream from that to make sure that your router/nat is passing the traffic properly. The INVITE is sent over port 5060 to your end. Can your router see anything passed over this port ? May also pay to look at disabling SIP ALG on your router if it has it as a feature.

What is your setup ?



93 posts

Master Geek
+1 received by user: 3


  Reply # 1040861 9-May-2014 14:54
Send private message

Hi,

I'm running a pfSense and to the best of my knowledge there is no SIP/NAT ALG features in it.

Here's a topology diagram: http://i.snag.gy/d0fZN.jpg

And here's a screenshot of my port forwards: http://i.snag.gy/9f2p2.jpg

266 posts

Ultimate Geek
+1 received by user: 26


  Reply # 1040869 9-May-2014 15:02
Send private message

That looks good as far as I can tell.

Perhaps go over this page to see if any of the information there will help :

https://doc.pfsense.org/index.php/VoIP_Configuration

Or rather this may be more helpful :

https://doc.pfsense.org/index.php/Asterisk_VoIP

25376 posts

Uber Geek
+1 received by user: 5202

Moderator
Trusted
Biddle Corp
Subscriber

  Reply # 1040891 9-May-2014 15:36
Send private message

You should never under any circumstances have any port forwards for SIP. It's not a matter of if you'll get hacked, it's when.

If you can't explain why you need them, you don't.. smile

Fully Operational
3342 posts

Uber Geek
+1 received by user: 1087

Trusted
Vocus
Subscriber

  Reply # 1040893 9-May-2014 15:38
Send private message

Indeed, at least pin those rules down to the proxy/sbc addresses of your chosen provider...



93 posts

Master Geek
+1 received by user: 3


  Reply # 1040942 9-May-2014 17:14
Send private message

Ok I finally got the SIP trunk "registered", inbound calls work.

Fixed it by enabling static port mapping: http://i.snag.gy/zIQ38.jpg

And I'm aware that having 5060 forwared to the world is dangerous, I was just doing it in testing.

8019 posts

Uber Geek
+1 received by user: 384

Trusted
Subscriber

  Reply # 1041759 11-May-2014 16:32
Send private message

Looks like you figured it out, yes in pfsense you need to enable static mapping, in other devices/software it's often called consistent NAT or 1:1 NAT.

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Chow brothers plan to invest NZ$100 million in technology
Posted 24-Sep-2017 16:24


Symantec protects data everywhere with Information Centric Security
Posted 21-Sep-2017 15:33


FUJIFILM introduces X-E3 mirrorless camera with wireless connectivity
Posted 18-Sep-2017 13:53


Vodafone announces new plans with bigger data bundles
Posted 15-Sep-2017 10:51


Skinny launches phone with support for te reo Maori
Posted 14-Sep-2017 08:39


If Vodafone dropping mail worries you, you’re doing online wrong
Posted 11-Sep-2017 13:54


Vodafone New Zealand deploy live 400 gigabit system
Posted 11-Sep-2017 11:07


OPPO camera phones now available at PB Tech
Posted 11-Sep-2017 09:56


Norton Wi-Fi Privacy — Easy, flawed VPN
Posted 11-Sep-2017 09:48


Lenovo reveals new ThinkPad A Series
Posted 8-Sep-2017 14:37


Huawei passes Apple for the first time to capture the second spot globally
Posted 8-Sep-2017 10:45


Vodafone initiative enhances te reo Maori pronunciation on Google Maps
Posted 8-Sep-2017 10:40


Voyager Internet expand local internet phone services company with Conversant acquisition
Posted 6-Sep-2017 18:27


NOW Expands in to Tauranga
Posted 5-Sep-2017 18:16


Windows 10 Fall Creators Update coming Oct. 17
Posted 4-Sep-2017 14:10



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.