On Aug 8, 2006, at 9:34 AM, Gary Hendershot wrote: > I think you are correct on the firewall config. I think that all I > need to > open to the outside are 5060-5064 or there abouts. These are the > "trigger" > ports the SIP provider tickles to establish the connection. After > that, the > two machines negotiate for the high ports used to carry audio. So my > concern about having to manually declare each of 2000 or more ports is > probably worrying about nothing.
I think this is true if all your SIP clients are on your private network. If you also want SIP clients on the public side, you will need to open ports from rtpstart to rtpend found in the rtp.conf. I use a smaller range than the default: rtpstart=16384 rtpend=16639 In addition, in your sip.conf: externip=voice.foo.com ; Asterisk external IP localnet=192.168.100.0/255.255.255.0 ; Asterisk local net need to be set for public SIP clients to work reliably. Lonnie _______________________________________________ Astlinux-users mailing list [email protected] http://lists.kriscompanies.com/mailman/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED]
