Router or switch?
I typically would put a firewall behind the router, but it really depends on
what you are trying to achieve here.
If your router has pix, you could create the vpn between them.
A more typical diagram would be
<sipx>---<lan>---<pfsense>------ISP------<pfsense>---<lan>---<sipx>
|| || ||------------IPSEC----------||
|| ||
|| ||-----192.168.10.x---------192.168.11.x--------||
||
||---sipdomain1--------------------------------------sipdomain2----------||
On Sat, Apr 24, 2010 at 8:30 AM, Rhon <[email protected]> wrote:
> Hi Tony,
>
> Sorry for that. I mean cisco router.
>
> :)
>
> Rhon
>
>
> On Sat, Apr 24, 2010 at 3:57 PM, Tony Graziano <
> [email protected]> wrote:
>
>> I don't understand what cisco is in this case.
>>
>> Once you connect the IPSEC tunnel, make sure once yuo have the ipsec
>> tunnel established that you create a
>>
>> Firewall>Rule>IPSEC
>>
>> That says to pass any protocol:
>>
>> ID Proto Source Port Destination Port Gateway Queue Schedule Description
>> <https://10.255.251.1:10443/firewall_rules_edit.php?if=enc0&after=-1>
>> <https://10.255.251.1:10443/firewall_rules.php?if=enc0&act=toggle&id=20>* *
>> * * * * * none
>>
>>
>>
>>
>>
>>
>>
>> You need a rule on each end to do that.
>>
>>
>> On Sat, Apr 24, 2010 at 1:25 AM, Rhon <[email protected]> wrote:
>>
>>> Hi,
>>>
>>> I'm planning to deploy sipxecs and pfsense altogether. As seen below:
>>>
>>> sipx server <---cisco<---pfsense firewall | INTERNET | --->pfsense
>>> --->cisco --> sipx server
>>>
>>> We will deploy IPSEC GRE tunnel on both sites. My question is:
>>>
>>> What ports needs to be opened in order to allow sipx-to-sipx to
>>> communicate?
>>>
>>> Thanks in advance
>>>
>>> Rhon
>>>
>>> _______________________________________________
>>> sipx-users mailing list [email protected]
>>> List Archive: http://list.sipfoundry.org/archive/sipx-users
>>> Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-users
>>> sipXecs IP PBX -- http://www.sipfoundry.org/
>>>
>>
>>
>>
>> --
>> ======================
>> Tony Graziano, Manager
>> Telephone: 434.984.8430
>> Fax: 434.984.8431
>>
>> Email: [email protected]
>>
>> LAN/Telephony/Security and Control Systems Helpdesk:
>> Telephone: 434.984.8426
>> Fax: 434.984.8427
>>
>> Helpdesk Contract Customers:
>> http://www.myitdepartment.net/gethelp/
>>
>> Why do mathematicians always confuse Halloween and Christmas?
>> Because 31 Oct = 25 Dec.
>>
>>
>
--
======================
Tony Graziano, Manager
Telephone: 434.984.8430
Fax: 434.984.8431
Email: [email protected]
LAN/Telephony/Security and Control Systems Helpdesk:
Telephone: 434.984.8426
Fax: 434.984.8427
Helpdesk Contract Customers:
http://www.myitdepartment.net/gethelp/
Why do mathematicians always confuse Halloween and Christmas?
Because 31 Oct = 25 Dec.
_______________________________________________
sipx-users mailing list [email protected]
List Archive: http://list.sipfoundry.org/archive/sipx-users
Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-users
sipXecs IP PBX -- http://www.sipfoundry.org/
