Re: [Freeswitch-users] NAT problems - sorry
Hi folks, Just thought I'd post the solution to this problem. In my case the problem was that my config was based on an older version and so was missing a crucial parameter that exists in the default config wirth a new install. The external.xml profile needed to contain the parameter: param name=local-network-acl value=localnet.auto/ With this in place, DTMF and hangup messages traverse the nat firewall correctly. Without it they don't. I searched the Wiki and couldn't find any info on this parameter. Can anyone provide a description of what it does and why it's significant that can be added to the WIKI? Cheers Andy _ From: freeswitch-users-boun...@lists.freeswitch.org [mailto:freeswitch-users-boun...@lists.freeswitch.org] On Behalf Of Brian West Sent: 07 October 2009 19:07 To: freeswitch-users@lists.freeswitch.org Subject: Re: [Freeswitch-users] NAT problems - sorry s/auto-nat/$realip/ then forward the rtp ports and sip ports. /b PS chances are you have to ENABLE upnp. On Oct 7, 2009, at 12:58 PM, Andy wrote: Many thanks Brian, the firewall docs assure me it is uPnp but is probably lying or a poor implementation. Could you point me to the right section of the Wiki to tell me how to do this manually as I've been scouting for some time and can;t seem to find the right thing. sorry if I'm being blind. ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
Bet you its inband dtmf and you need to start the dtmf detector. /b On Oct 7, 2009, at 8:11 AM, Andy wrote: I can hear the IVR message played down the phone line so outgoing audio is ok. ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
Thanks Brian, sorry should have pre-empted that one as I've issue before. start_dtmf is in the dialplan and occurs at the start of every call. On closer inspection however it appears that only part of the nat setup is taking place. sofia status gives: Name Type Data State = internal profile sip:mod_so...@10.10.0.2:5080 RUNNING (0) external profile sip:mod_so...@10.10.0.2:5060 RUNNING (0) default alias internal ALIASED 10.10.0.2 alias internal ALIASED = 2 profiles 2 aliases sofia status profile external gives (the external ip addresses are correct): API CALL [sofia(status profile external)] output: = Nameexternal Domain Name N/A DBName sofia_reg_external Pres Hosts DialplanXML,enum Context default Challenge Realm auto_to RTP-IP 10.10.0.2 Ext-RTP-IP 82.5.159.138 SIP-IP 10.10.0.2 Ext-SIP-IP 82.5.159.138 URL sip:mod_so...@10.10.0.2:5060 BIND-URLsip:mod_so...@10.10.0.2:5060 HOLD-MUSIC N/A OUTBOUND-PROXY N/A CODECS PCMU,PCMA,GSM TEL-EVENT 101 DTMF-MODE rfc2833 CNG 13 SESSION-TO 0 MAX-DIALOG 0 NOMEDIA false LATE-NEGfalse PROXY-MEDIA false AGGRESSIVENAT false STUN-ENABLEDtrue STUN-AUTO-DISABLE false CALLS-IN0 FAILED-CALLS-IN 0 CALLS-OUT 0 FAILED-CALLS-OUT0 BUT.. nat_map status, gives: API CALL [nat_map(status)] output: false And there is no mention of nat detection in the startup log. Is this because I'm using port 5060 externally? Cheers Andy _ From: freeswitch-users-boun...@lists.freeswitch.org [mailto:freeswitch-users-boun...@lists.freeswitch.org] On Behalf Of Brian West Sent: 07 October 2009 15:22 To: freeswitch-users@lists.freeswitch.org Subject: Re: [Freeswitch-users] NAT problems - sorry Bet you its inband dtmf and you need to start the dtmf detector. /b On Oct 7, 2009, at 8:11 AM, Andy wrote: I can hear the IVR message played down the phone line so outgoing audio is ok. ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
No its because you're not behind a upnp/nat-pmp router so you'll have to manually forward everything... All the info you showed displaying the profile status is correct. /b On Oct 7, 2009, at 12:44 PM, Andy wrote: Is this because I'm using port 5060 externally? Cheers Andy ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
Many thanks Brian, the firewall docs assure me it is uPnp but is probably lying or a poor implementation. Could you point me to the right section of the Wiki to tell me how to do this manually as I've been scouting for some time and can;t seem to find the right thing. sorry if I'm being blind. _ From: freeswitch-users-boun...@lists.freeswitch.org [mailto:freeswitch-users-boun...@lists.freeswitch.org] On Behalf Of Brian West Sent: 07 October 2009 18:49 To: freeswitch-users@lists.freeswitch.org Subject: Re: [Freeswitch-users] NAT problems - sorry No its because you're not behind a upnp/nat-pmp router so you'll have to manually forward everything... All the info you showed displaying the profile status is correct. /b On Oct 7, 2009, at 12:44 PM, Andy wrote: Is this because I'm using port 5060 externally? Cheers Andy ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
s/auto-nat/$realip/ then forward the rtp ports and sip ports. /b PS chances are you have to ENABLE upnp. On Oct 7, 2009, at 12:58 PM, Andy wrote: Many thanks Brian, the firewall docs assure me it is uPnp but is probably lying or a poor implementation. Could you point me to the right section of the Wiki to tell me how to do this manually as I've been scouting for some time and can;t seem to find the right thing. sorry if I'm being blind. ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
Thanks Brian, I've now set the external ips manually to be my external ip and have forward all ports through my firewall to the FS server. It's actually set up as a DMZ to everything is being forwarded without restriction but sadly DTMF and HANGUP messages are still not getting through. Have I misunderstood what is required. Is there some additional forwarding within FS required. I'm really sorry to keep coming back but I've been wrestling with this for a long time now and not getting anywhere. Many thanks Andy _ From: freeswitch-users-boun...@lists.freeswitch.org [mailto:freeswitch-users-boun...@lists.freeswitch.org] On Behalf Of Brian West Sent: 07 October 2009 19:07 To: freeswitch-users@lists.freeswitch.org Subject: Re: [Freeswitch-users] NAT problems - sorry s/auto-nat/$realip/ then forward the rtp ports and sip ports. /b PS chances are you have to ENABLE upnp. On Oct 7, 2009, at 12:58 PM, Andy wrote: Many thanks Brian, the firewall docs assure me it is uPnp but is probably lying or a poor implementation. Could you point me to the right section of the Wiki to tell me how to do this manually as I've been scouting for some time and can;t seem to find the right thing. sorry if I'm being blind. ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
Re: [Freeswitch-users] NAT problems - sorry
Double check your firewall and: 1) ensure you've actually enabled UPNP and 2) Ensure that any mention of a SIP ALG (application level gateway) is turned off. SIP ALGs tend to really screw things up. On Wed, Oct 7, 2009 at 12:48 PM, Andy a...@fabulous4.co.uk wrote: I've now set the external ips manually to be my external ip and have forward all ports through my firewall to the FS server. It's actually set up as a DMZ to everything is being forwarded without restriction but sadly DTMF and HANGUP messages are still not getting through. Have I misunderstood what is required. Is there some additional forwarding within FS required. I'm really sorry to keep coming back but I've been wrestling with this for a long time now and not getting anywhere. -- -Rupa ___ FreeSWITCH-users mailing list FreeSWITCH-users@lists.freeswitch.org http://lists.freeswitch.org/mailman/listinfo/freeswitch-users UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users http://www.freeswitch.org
