Re: [Shorewall-users] Problem With VoipServer - Corrected

Mon, 15 Nov 2010 01:01:31 -0800 

This is most likey a problem with the SIP protocol and NAT. SIP has a lot of 
problems with NAT. Are you able to use the IAX2 protocol for voip trunking 
rather than SIP?
Either that or you may need to setup a static NAT that will translate all 
external UDP ports to a single local IP on which the voip endpoint is installed.

Regards,
T


Watanabe Anderson <[email protected]> wrote:




Hello All,



I’m using Shorewall 4.4.6 on Ubuntu 10.04


My internet conection (pppoe) is ppp0 with a /29 network size. (222.x.y.72, 
first ip).

My /etc/shorewall/masq file is:
###############################################################################
#INTERFACE              SOURCE          ADDRESS         PROTO   PORT(S) IPSEC   
MARK
ppp0                    eth1
ppp0                    eth2
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE


At my /etc/shorewall/rules, I have this rule:
ACCEPT    loc:$VOIPGW        net        all
DNAT       net:$JP      voip:$VOIPGW:5060       udp     5060    -       
222.x.y.75



My problem is:
When I make a call, I did not hear the voice on the other side of the line, but 
the other person hears me.


The tcpdump log is....
16:08:02.020241 IP 192.168.168.10.10780 > 
pw126245036149.5.tik.panda-world.ne.jp.16384: UDP, length 52
16:08:02.060239 IP 192.168.168.10.10780 > 
pw126245036149.5.tik.panda-world.ne.jp.16384: UDP, length 52
16:08:02.100251 IP 192.168.168.10.10780 > 
pw126245036149.5.tik.panda-world.ne.jp.16384: UDP, length 52
16:08:02.140236 IP 192.168.168.10.10780 > 
pw126245036149.5.tik.panda-world.ne.jp.16384: UDP, length 52
16:08:02.180240 IP 192.168.168.10.10780 > 
pw126245036149.5.tik.panda-world.ne.jp.16384: UDP, length 52
16:08:02.220236 IP 192.168.168.10.10780 > 
pw126245036149.5.tik.panda-world.ne.jp.16384: UDP, length 52

and
16:08:02.501975 IP pw126245036149.5.tik.panda-world.ne.jp > 192.168.168.10: 
ICMP pw126245036149.5.tik.panda-world.ne.jp udp port 16384 unreachable, length 
36
16:08:02.517805 IP pw126245036149.5.tik.panda-world.ne.jp > 192.168.168.10: 
ICMP pw126245036149.5.tik.panda-world.ne.jp udp port 16384 unreachable, length 
36
16:08:02.537948 IP pw126245036149.5.tik.panda-world.ne.jp > 192.168.168.10: 
ICMP pw126245036149.5.tik.panda-world.ne.jp udp port 16384 unreachable, length 
36


So...

Where is my worng? Can you help me?



Thanks a lot.


Watanabe Anderson


------------------------------------------------------------------------------
Centralized Desktop Delivery: Dell and VMware Reference Architecture
Simplifying enterprise desktop deployment and management using
Dell EqualLogic storage and VMware View: A highly scalable, end-to-end
client virtualization framework. Read more!
http://p.sf.net/sfu/dell-eql-dev2dev
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to