Lloyd,
A couple of points with dual wan that I encountered.
Unless you bond your links you'll need to restrict your sip to one link
so that the traffic is always originating from the same external IP.
Also with pfSense as far as I know it still can not do bandwidth shaping
when doing wan load balancing. It's being worked on but I believe not
available yet. What I have done in the past is dedicate one link to Voip
and the other to other traffic, then have either roll over to the other
on failure, then you can do shaping on each link, since your not doing
load balancing but relying on routing rules.
On the nat transversal if it is just a few phones , give each of them
their own port so 1001 use 5061, 1002 5062. The other possibilities is
to use the sippixd package or use freeswitch to handle the routing.
Just a few thoughts.
Mike
Aloysius Thevarajah Lloyd wrote:
Chuck,
Always difficulty with pfSense and SIP. The following I copied from the
pfSense [
http://www.pfsense.org/index.php?option=com_content&task=view&id=40&Itemid=43]
website.
"SIP Limitation - By default, all TCP and UDP traffic other than SIP and
IPsec gets the source port rewritten. More information on this can be found
in the static port documentation<http://doc.pfsense.org/index.php/Static_Port>.
Because this source port rewriting is how pf tracks which internal IP made
the connection to the given external server, and most all SIP traffic uses
the same source port, only one SIP device can connect simultaneously
to a*single server on the Internet
*. Unless your SIP devices can operate with source port rewriting (most
can't), you cannot use multiple phones with a single outside server without
using a dedicated public IP per device"
--
If my Asterisk server on the internet (Hosted outside the network). Then my
phones on the local network one phone only able to connect at a time to the
Asterisk.
Lloyd
On Fri, Mar 27, 2009 at 4:48 PM, Chuck Mariotti <[email protected]>wrote:
I have setup a pfSense box with three NICs... LAN, WAN, WAN2...
pfSense can monitor each WAN and loadbalance across them. If one fails, it
can use the other... when the failed comes out of failed state, it can load
balance them again. I have this setup with a T1 (Static) and Rogers Internet
Unplugged (DHCP)... I have only had it working for a week, so I don't have
any reports on issues...
As Doug said, if it's strictly outbound that is needed to be failover, this
is fairly easy. However, if you need inbound I think it's fairly tough to
remap external IPs to different ISPs.
Regards,
Chuck
-----Original Message-----
From: Aloysius Thevarajah Lloyd [mailto:[email protected]]
Sent: Friday, March 27, 2009 4:03 PM
To: [email protected]
Subject: [on-asterisk] Dual Wan and Load Balancing
Hi Everyone,
How to build a reliable Dual Wan & load balancing in the Following
Scenarios
*Scenario-1*
ISP1 - DSL with Static IP
ISP2 - Broadband DHCP
*Scneraio-2*
ISP1 - DSL with Static IP
ISP2 - DSL with Static IP
*Scenario-3*
ISP1 - Broadband DHCP
ISP2 - Broadband DHCP
Does any one have any recommendation Hardware ( Not Expensive) or Software(
I prefer) ?
Thank you
Lloyd
--
Mike Ashton
Quality Track Intl
CTO
Ph: 647-724-3500 x 301
Cell: 416-527-4995
Fax: 416-352-6043
QTI CONFIDENTIAL AND PROPRIETARY INFORMATION
The contents of this material are confidential and proprietary to Quality Track
International, Inc.
and may not be reproduced, disclosed, distributed or used without the express
permission of an authorized representative of QTI.
Use for any purpose or in any manner other than that expressly authorized is
prohibited.
If you have received this communication in error, please immediately delete it
and all copies, and promptly notify the sender.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
