Hi Mark, Thanks for the response. If I wanted to put our Asterisk server behind the firewall (it has a public IP which would need to be retained), what all would it entail?
Thanks again. Patrick On Fri, 2008-01-11 at 15:36 -0700, Mark Crane wrote: > Siproxyd is a proxy for SIP and has little to do with TFTP. The issue you > mentioned sounds like it is really an issue of getting TFTP to work. > > You could really do one of two things put a TFTP inside the network with your > phone or attempt to us NAT and rules to forward the TFTP traffic. I have not > tried TFTP through NAT yet since my Asterisk server, TFTP server and phones > are all on the LAN side of the network. > > Hope this helps. > > Mark Crane > user: mcrane on the forum > > > > Patrick wrote: > > I've been able to get the Cisco phone working behind the firewall now. > > I'm able to make and receive phone calls. > > > > There is one item which isn't working. Our PBX is outside of the > > pfsense firewall. These Cisco phones use TFTP to pull the config files. > > For some reason, I can't get the phones to connect to our PBX via TFTP. > > They connect fine if I manually configure each phone one by one, but I > > would prefer to use TFTP to update the configs. > > > > I googled around and noticed that people were using siproxyd. Should I > > install that via pfSense? Or is there something else I can do that will > > allow tftp to work? > > > > Thanks again. > > > > Patrick > > > > > > > > On Wed, 2008-01-02 at 21:06 -0500, Scott Ullrich wrote: > > > >> On 1/2/08, patrickm <[EMAIL PROTECTED]> wrote: > >> > >>> Hi all, > >>> > >>> I'm in charge of replacing our Cisco PIX firewall with one that will allow > >>> us to use VPN, and a bunch of my other sysadmin friends have suggested > >>> using pfsense. Everything was super easy to set up initially, and now I > >>> want to get our Cisco 7971 SIP VoIP phones working behind NAT. > >>> > >>> I was wondering if anyone had to do something similar, or if anyone has a > >>> link or links to some helpful resources that will push me in the right > >>> direction. > >>> > >>> Thanks in advance! > >>> > >> Visit Firewall, Nat, Outbound. Enable Advanced outbound NAT. > >> > >> Edit auto-created LAN rule, check static-port. Save. > >> > >> It should work okay now. > >> > >> Scott > >> > > > > > > > >
