Hi Llyod, I had this issue at home (running pfSense 1.2-RELEASE there) until I did the following:
1. Under the Firewall tab, click NAT. 2. Click the Outbound sub-tab. 3. Click the "Manual Outbound NAT rule generation" radio button. 4. Click the Save button. 5. A rule should have been automatically generated for your LAN traffic. Click the edit button for this rule. 6. In the Translation section, check the "Static-port" checkbox. 7. Click the Save button. 8. Reboot pfSense. Not sure if this is the same issue you are experiencing, but it certainly resolved my issues. Cheers, AR -----Original Message----- From: Aloysius Thevarajah Lloyd [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 16, 2008 11:09 AM To: [email protected] Subject: [on-asterisk] pfSensce - SIP Limitations Hello, I am having trouble to configure the pfsense. Any help appreciate. *I am using the most recent pfSense 1.2-RELEASE built on Sun Feb 24 17:04:58 EST 2008* Newtwork 1 ----------------- - Asterisk server running with a Public IP address. No Firewalls. Network 2 with pfSense ---------------------------------- - Two Astra Phones behind the pfsense firewall trying to register with the Remote asterisk server. - Only one client can connect at a time? - But when I use a Linksys or snapgear it works works for me. Is this a pfSense Limitaion related to SIP or Am I missing something in the pfsense settings ? Also I find the following from the pfSense web site ... www.pfsense.com -> info -> features *SIP Limitation - By default, all TCP and UDP traffic other than SIP and IPsec gets the source port rewritten. More information on this can be found in the static port documentation<http://doc.pfsense.org/index.php/Static_Port>. Because this source port rewriting is how pf tracks which internal IP made the connection to the given external server, and most all SIP traffic uses the same source port, only one SIP device can connect simultaneously to a single server on the Internet. Unless your SIP devices can operate with source port rewriting (most can't), you cannot use multiple phones with a single outside server without using a dedicated public IP per device. The sipproxd package will provide a work around for this issue, and is currently under development.* Any help help appreciate. Thank you Lloyd --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
