I have four-interface Shorewall config set up. The "dmz" interface is bridged with "net" so I can assign public IP's to the servers in the DMZ. I opted to do this rather than SNAT or ARP proxying because one of the servers runs Asterisk and SIP and NAT don't always work well together. Somehow, my firewall config is causing a one-way audio problem in Asterisk. If a person calls into the PBX, they cannot hear me speaking, but I can hear them. If I plug the Asterisk server directly into the router, bypassing the bridge, the problem goes away.
My best guess is that my Shorewall (and/or bridge) config is mangling or blocking the outgoing RTP (media) traffic. Using ipperf, I've successfully tested other UDP streams from the Asterisk server using the same high-number ports used by RTP. No problems there. Does anyone have suggestions on other types of tests I can perform? Unfortunately I don't yet have another SIP endpoint that I can try to register with and confirm whether or not my RTP traffic is arriving there. Attached is a Shorewall dump, as requested in the support FAQ.
status.txt.gz
Description: GNU Zip compressed data
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
