Re: [EXTERNAL] Re: Wifi Calling Firewall Holes to Punch

2020-07-19 Thread Lyden, John C
nt: Friday, July 17, 2020 5:00 PM To: Lyden, John C Cc: nanog@nanog.org Subject: [EXTERNAL] Re: Wifi Calling Firewall Holes to Punch In our university environment, wifi calling works just fine over NAT and we have not made any inbound port exceptions in the firewall for it. The critical piec

Re: [EXTERNAL] Re: Wifi Calling Firewall Holes to Punch

2020-07-19 Thread Lyden, John C
ro, NJ 08028 rowan.edu/irt<http://rowan.edu/irt> From: Alex Buie Sent: Friday, July 17, 2020 12:59 PM To: Lyden, John C Cc: nanog@nanog.org Subject: [EXTERNAL] Re: Wifi Calling Firewall Holes to Punch It's been a minute since I've set this up in a corp/campus wif

Re: Wifi Calling Firewall Holes to Punch

2020-07-19 Thread Rafael Possamai
Also do wifi calls from Android phone on VZW behind NAT, with no issues. I do have a "network extender" which has GPS link and ethernet (also behind NAT) and it does give me 5 bars around the house (up to 70mbps ish of download over LTE). Now, your NAT setup could possibly interefere? In my

Re: Wifi Calling Firewall Holes to Punch

2020-07-17 Thread Jason Alderfer
In our university environment, wifi calling works just fine over NAT and we have not made any inbound port exceptions in the firewall for it. The critical piece for (non-enterprise) VoIP traffic is that your firewall must not try to function as a SIP ALG, but I'm not sure that's directly relevant

Re: Wifi Calling Firewall Holes to Punch

2020-07-17 Thread Mark Tinka
On 17/Jul/20 22:09, Josh Luthman wrote: > I do dozens of VZW WiFi calls a day.  My phone is behind NAT, no problem. > > It's probably 50/50 where the call starts on WiFi vs switches to WiFi > after ~3 seconds from the poor VZW signal. Same here, one of my cell operators uses VoWiFi for their

Re: Wifi Calling Firewall Holes to Punch

2020-07-17 Thread Josh Luthman
I do dozens of VZW WiFi calls a day. My phone is behind NAT, no problem. It's probably 50/50 where the call starts on WiFi vs switches to WiFi after ~3 seconds from the poor VZW signal. Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Fri, Jul

Re: Wifi Calling Firewall Holes to Punch

2020-07-17 Thread Alex Buie via NANOG
It's been a minute since I've set this up in a corp/campus wifi scenario, but my notes for Verizon VoWiFi from the last time I did say that you need outbound udp/500 and udp/4500 IPSec protocol (IKE and ESP) permitted out the firewall. Tunnel endpoints live in 141.207.0.0/16, so hopefully that

Wifi Calling Firewall Holes to Punch

2020-07-17 Thread Lyden, John C
Hey gang. We're setting up a unified wireless network for the students here, and to get around the issues with Nintendo and NAT we devoted a large chunk of public IP space to them. We're aware that this is causing issues with wifi calling on Verizon, TMo etc because it appears they initiate