I've tried even the buffalo stuff with open source software, not pretty. Get the an alix box with pfsense 1.2.3 and be done with it.
============================ Tony Graziano, Manager Telephone: 434.984.8430 Fax: 434.984.8431 Email: [email protected] LAN/Telephony/Security and Control Systems Helpdesk: Telephone: 434.984.8426 Fax: 434.984.8427 Helpdesk Contract Customers: http://www.myitdepartment.net/gethelp/ ----- Original Message ----- From: [email protected] <[email protected]> To: sipX Users Mailing List <[email protected]> Sent: Wed Feb 09 13:08:49 2011 Subject: [sipx-users] Firewall settings (SPI, ALG, etc.) I'm currently using a D-Link DIR-655 in front of our sipXecs box. Before the D-Link DIR-655, I was using an ISP supplied router that had very few features (no SIP ALG, SPI, etc.). Remote workers worked just fine on through this router. I'm with a different ISP now, so I needed to find another device. Ever since I started to use the DIR-655, remote worker phones have not been able to register. I thought it might be a setting such as SIP ALG that was causing the issue. However, when I disable SIP ALG, the sipXecs box is no longer able to register to voip.ms! I tried playing around with a few other settings, but I can't seem to get it to register to voip.ms when SIP ALG is disabled. Any ideas what router settings could cause ITSP registration issues such as this? Here's a link to the DIR-655 emulator, firewall settings page (this emulator is for the original DIR-655, but this page is the same in rev B): http://support.dlink.com/emulators/dir655/133NA/Firewall.html Here are the settings I have tried and the results: - SPI enabled, UDP Endpoint Filtering set to Address Restricted, TCP Endpoint Filtering set to Port and Address Restricted, all ALG options set to enabled (including SIP): Can register to VoIP.ms, CallCentric, but remote workers can't register. - SPI enabled, UDP Endpoint Filtering set to Address Restricted, TCP Endpoint Filtering set to Port and Address Restricted, all ALG options set to enabled except for SIP ALG, which is set to disabled: Cannot register to VoIP.ms, can register to CallCentric, didn't test remote workers. - SPI disabled, UDP Endpoint Filtering set to Endpoint Independent, TCP Endpoint Filtering set to Endpoint Independent, all ALG options set to enabled except for SIP ALG, which is set to disabled: Cannot register to VoIP.ms, can register to CallCentric, didn't test remote workers. I know the D-Link DIR-655 is a consumer grade product, but I had a few of these available to me and was hoping that I could use one in front of sipXecs. I find it odd that disabling SIP ALG results in sipXecs failing to register to voip.ms, unless something else on the box is messing with the packets as well. Any ideas? _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
