[Freeswitch-users] Issue with Freeswitch Behind nat
Pasha
pasha at prosperity4ever.com
Thu Jan 15 00:30:58 MSK 2015
When you're behind NAT you have to make sure that your firewall rewrites
the packets and allows them through. It sounds like your port 5060 is
open and is being sent to the correct internal machine (server B), but
your media is not (RTP), you need to make sure that you are allowing and
forwarding the RTP ports as well (I can't remember the exact range, but
I believe they are specified somewhere in freeswitch config) but it's
something like 10,000-22,000 (it's a range), then your audio should be
working. Depending on your setup you might have to setup source NAT as
well as destination NAT.
I have a working environment in production where all my servers are
behind NAT as well as all my clients connecting to them are behind NAT
as well via openvpn (vpn NAT too hehe), so I know it works, just need to
play with it enough until you get it working properly.
Hope that helped.
Paul
On 15-01-14 01:13 PM, Frederick Pruneau wrote:
> Sorry for the delay.
>
> I have attached a PNG file of my topology.
>
> 2014-12-19 17:01 GMT-05:00 Brian West <brian at freeswitch.org
> <mailto:brian at freeswitch.org>>:
>
> Describe your topology a little bit.
>
> On Fri, Dec 19, 2014 at 2:31 PM, Frederick Pruneau
> <frederick at targointernet.com <mailto:frederick at targointernet.com>>
> wrote:
>
> Sorry, I pasted all my log file. I have a new pastebin:
>
> https://pastebin.freeswitch.org/23771
>
> I tested it and I can open it.
>
> 2014-12-19 13:05 GMT-05:00 Brian West <brian at freeswitch.org
> <mailto:brian at freeswitch.org>>:
>
> Never able to load your pastebin, it would timeout and not
> load, what exactly did you paste in there?
>
> On Fri, Dec 19, 2014 at 8:56 AM, Frederick Pruneau
> <frederick at targointernet.com
> <mailto:frederick at targointernet.com>> wrote:
>
> Did you find something?
>
> 2014-12-17 10:36 GMT-05:00 Frederick Pruneau
> <frederick at targointernet.com
> <mailto:frederick at targointernet.com>>:
>
> Here it is: https://pastebin.freeswitch.org/23746
>
> It is my freeswitch log. I have followed this
> guide before:
>
> https://wiki.freeswitch.org/wiki/Sofia#Debugging_Sofia-SIP
>
> I have enabled this and make a call:
>
> sofia global siptrace on
> sofia loglevel all 9
> sofia tracelevel alert
> console loglevel debug
> fsctl debug_level 10
>
> This is what you will get in my pastebin
>
>
> 2014-12-17 9:27 GMT-05:00 Brian West
> <brian at freeswitch.org <mailto:brian at freeswitch.org>>:
>
> sofia global siptrace on
>
> from fs_cli
>
> On Wed, Dec 17, 2014 at 7:44 AM, Frederick
> Pruneau <frederick at targointernet.com
> <mailto:frederick at targointernet.com>> wrote:
>
> Sorry for this noob question but how can I
> see sip traffic? Is there a specific
> command to show this? Is it what we find
> in freeswitch.log? If so, I attached my
> log file in my first post.
>
> Thanks for you help
>
> 2014-12-16 15:44 GMT-05:00 Brian West
> <brian at freeswitch.org
> <mailto:brian at freeswitch.org>>:
>
> have you looked at the signalling?
> What does the sip traffic show?
> Please pastebin that.
>
> On Tue, Dec 16, 2014 at 2:37 PM,
> Frederick Pruneau
> <frederick at targointernet.com
> <mailto:frederick at targointernet.com>>
> wrote:
>
> Same problem...
>
> 2014-12-16 13:55 GMT-05:00 Brian
> West <brian at freeswitch.org
> <mailto:brian at freeswitch.org>>:
>
> Guessing you don't have UPNP
> or NAT-PMP on your network,
> there for that won't work,
>
> ext-sip-ip=autonat:x.x.x.x
> ext-rtp-ip=autonat:x.x.x.x
>
> Set local-network-ac to
> rfc1918.auto
>
> On Tue, Dec 16, 2014 at 12:15
> PM, Support Technique
> <support at targointernet.com
> <mailto:support at targointernet.com>>
> wrote:
>
> <param name="ext-rtp-ip"
> value="auto-nat"/>
> <param name="ext-sip-ip"
> value="auto-nat"/>
> <param
> name="local-network-acl"
> value="localnet.auto"/>
>
> 2014-12-16 12:25 GMT-05:00
> Brian West
> <brian at freeswitch.org
> <mailto:brian at freeswitch.org>>:
>
>
> On the system behind
> nat what do you have
> ext-rtp-ip, ext-sip-ip
> and local-network-acl
> set to?
>
> On Tue, Dec 16, 2014
> at 10:41 AM, Frederick
> Pruneau
> <frederick at targointernet.com
> <mailto:frederick at targointernet.com>>
> wrote:
>
> Hi guys,
>
> We have an issue
> with one
> freeswitch server
> behind nat. We
> have a setup like
> this:
>
> -One master
> Freeswitch server
>
> -One freeswitch
> server connected
> to the master
> (Public IP) - Server A
>
> -One freeswitch
> server connected
> to the master
> (behind nat) -
> Server B
>
> If server A call
> server B, nothing
> happens. There is
> no sound. After 30
> sec, it times out.
> We have done a
> tcpdump. From
> server A to master
> packets are ok.
> From Master to
> server B, we have
> seen that there is
> no source and no
> destination ports
> for sip invite.
>
> If we use our
> cellphone and we
> call server B,
> there is no problem.
>
> I have attached
> the failed call
> pcap file and
> freeswitch's log
> file so you can
> take a look at them.
>
> Master =
> Freeswitch v1.4.13
> Server A =
> Freeswitch v.1.4.13
> Server B =
> Freeswitch
> v.1.4.14 (Updated
> to latest release
> since we have
> issues with this
> server)
>
> Thanks in advance.
>
> PS: The failed
> call is from
> 514-448-0773
> <tel:514-448-0773>.
>
> _________________________________________________________________________
> Professional
> FreeSWITCH
> Consulting Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official
> FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users
> mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
> --
>
> */Brian West/*
> brian at freeswitch.org
> <mailto:brian at freeswitch.org>
>
>
> */Twitter: @FreeSWITCH
> , @briankwest/*
> http://www.freeswitchbook.com
> http://www.freeswitchcookbook.com
>
> *T:*+19184209001
> <tel:%2B19184209001> |
> *F:*+19184209002
> <tel:%2B19184209002> |
> *M:*+1918424WEST (9378)
> *iNUM:*+883 5100 1420
> 9001 | *ISN:*410*543 |
> *Skype:*briankwest
>
>
> _________________________________________________________________________
> Professional
> FreeSWITCH Consulting
> Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users
> mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
> _________________________________________________________________________
> Professional FreeSWITCH
> Consulting Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
> --
>
> */Brian West/*
> brian at freeswitch.org
> <mailto:brian at freeswitch.org>
>
>
> */Twitter: @FreeSWITCH ,
> @briankwest/*
> http://www.freeswitchbook.com
> http://www.freeswitchcookbook.com
>
> *T:*+19184209001
> <tel:%2B19184209001> |
> *F:*+19184209002
> <tel:%2B19184209002> |
> *M:*+1918424WEST (9378)
> *iNUM:*+883 5100 1420 9001 |
> *ISN:*410*543 | *Skype:*briankwest
>
>
> _________________________________________________________________________
> Professional FreeSWITCH
> Consulting Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting
> Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
> --
>
> */Brian West/*
> brian at freeswitch.org
> <mailto:brian at freeswitch.org>
>
>
> */Twitter: @FreeSWITCH , @briankwest/*
> http://www.freeswitchbook.com
> http://www.freeswitchcookbook.com
>
> *T:*+19184209001 <tel:%2B19184209001>
> | *F:*+19184209002
> <tel:%2B19184209002> |
> *M:*+1918424WEST (9378)
> *iNUM:*+883 5100 1420 9001 |
> *ISN:*410*543 | *Skype:*briankwest
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting
> Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
> --
>
> */Brian West/*
> brian at freeswitch.org <mailto:brian at freeswitch.org>
>
>
> */Twitter: @FreeSWITCH , @briankwest/*
> http://www.freeswitchbook.com
> http://www.freeswitchcookbook.com
>
> *T:*+19184209001 <tel:%2B19184209001> |
> *F:*+19184209002 <tel:%2B19184209002> |
> *M:*+1918424WEST (9378)
> *iNUM:*+883 5100 1420 9001 | *ISN:*410*543 |
> *Skype:*briankwest
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
>
>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
> --
>
> */Brian West/*
> brian at freeswitch.org <mailto:brian at freeswitch.org>
>
>
> */Twitter: @FreeSWITCH , @briankwest/*
> http://www.freeswitchbook.com
> http://www.freeswitchcookbook.com
>
> *T:*+19184209001 <tel:%2B19184209001> | *F:*+19184209002
> <tel:%2B19184209002> | *M:*+1918424WEST (9378)
> *iNUM:*+883 5100 1420 9001 | *ISN:*410*543 |
> *Skype:*briankwest
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
>
> --
>
> Frédérick Pruneau
> Administrateur réseau | Network administrator
> Targo Communications
> Ste-Clotilde :(450) 826-0031
> Montréal :_(514) 448-0773 <tel:%28514%29%20448-0773> _
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
> --
>
> */Brian West/*
> brian at freeswitch.org <mailto:brian at freeswitch.org>
>
>
> */Twitter: @FreeSWITCH , @briankwest/*
> http://www.freeswitchbook.com
> http://www.freeswitchcookbook.com
>
> *T:*+19184209001 <tel:%2B19184209001> | *F:*+19184209002
> <tel:%2B19184209002> | *M:*+1918424WEST (9378)
> *iNUM:*+883 5100 1420 9001 | *ISN:*410*543 | *Skype:*briankwest
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org <mailto:consulting at freeswitch.org>
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> <mailto:FreeSWITCH-users at lists.freeswitch.org>
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
>
>
> --
> Frédérick Pruneau
> Administrateur réseau | Network administrator
> Targo Communications
> Ste-Clotilde :(450) 826-0031
> Montréal :_(514) 448-0773_
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20150114/a7970847/attachment-0001.html
Join us at ClueCon 2016 Aug 8-12, 2016
More information about the FreeSWITCH-users
mailing list