<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">The default acl's treat all rfc1918 addresses as internal. you'll need to make one that treats your external addresses as external even tho they are rfc1918. Why are you natting from one private address to another? Its a very strange implementation<div class=""><br class=""><div class=""><br class=""><div><blockquote type="cite" class=""><div class="">On Apr 6, 2016, at 1:31 PM, Oz Mortimer <<a href="mailto:omortimer@gmail.com" class="">omortimer@gmail.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><meta http-equiv="Content-Type" content="text/html charset=utf-8" class=""><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Hi,<div class="">Thanks for the reply - I wish I understood it - but I don’t ;)</div><div class="">Yes, the natting is between one rfc1918 address space to another.</div><div class=""><br class=""></div><div class="">Based on your reply I tried</div><div class=""><br class=""></div><div class=""><span class="Apple-tab-span" style="white-space:pre"> </span><param name="apply-nat-acl" value="damnnat”/></div><div class=""><br class=""></div><div class="">where acl.conf.xml has</div><div class=""><br class=""></div><div class=""><div class=""> <list name="damnnat" default="allow"></div><div class=""> <node type="allow" cidr="192.168.1.0/24"/></div><div class=""> <node type="allow" cidr="172.17.0.0/24"/></div><div class=""> </list></div><div class=""><br class=""></div><div class="">To no avail!. can you give me a pointer to what I need to change and where?</div><div class=""><br class=""></div><div class="">Thanks</div><div class="">Oz.</div><div class=""><br class=""></div><div class=""><blockquote type="cite" class=""><div class="">On 6 Apr 2016, at 17:58, Michael Jerris <<a href="mailto:mike@jerris.com" class="">mike@jerris.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><meta http-equiv="Content-Type" content="text/html charset=utf-8" class=""><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">you are natting from one rfc1918 address space to another? If so, all the default nat acl's will be wrong, and you will have to make your own acl's that match your network environment.<div class=""><br class=""><div class=""><blockquote type="cite" class=""><div class="">On Apr 6, 2016, at 12:48 PM, Oz Mortimer <<a href="mailto:omortimer@gmail.com" class="">omortimer@gmail.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><meta http-equiv="Content-Type" content="text/html charset=utf-8" class=""><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">HI,<div class=""><br class=""></div><div class="">I’m trying to get FS running in Docker, which largely was pain free (i know, i know, VMs, etc), but I can’t get my head around what is going on with RTP. Ive set ext-rtp-ip and it seems to be taking affect:</div><div class=""><br class=""></div><div class=""><div class="">freeswitch@7ad22635059e> sofia status profile internal</div><div class="">=================================================================================================</div><div class="">Name <span class="Apple-tab-span" style="white-space:pre"> </span>internal</div><div class="">Domain Name <span class="Apple-tab-span" style="white-space:pre"> </span>N/A</div><div class="">Auto-NAT <span class="Apple-tab-span" style="white-space:pre"> </span>false</div><div class="">DBName <span class="Apple-tab-span" style="white-space:pre"> </span>sofia_reg_internal</div><div class="">Pres Hosts <span class="Apple-tab-span" style="white-space:pre"> </span>172.17.0.5,172.17.0.5</div><div class="">Dialplan <span class="Apple-tab-span" style="white-space:pre"> </span>XML</div><div class="">Context <span class="Apple-tab-span" style="white-space:pre"> </span>trusted</div><div class="">Challenge Realm <span class="Apple-tab-span" style="white-space:pre"> </span>auto_from</div><div class="">RTP-IP <span class="Apple-tab-span" style="white-space:pre"> </span>172.17.0.5</div><div class="">Ext-RTP-IP <span class="Apple-tab-span" style="white-space:pre"> </span><font color="#e32400" class="">192.168.1.168</font></div><div class="">SIP-IP <span class="Apple-tab-span" style="white-space:pre"> </span>172.17.0.5</div><div class="">Ext-SIP-IP <span class="Apple-tab-span" style="white-space:pre"> </span><font color="#e32400" class="">192.168.1.168</font></div><div class="">URL <span class="Apple-tab-span" style="white-space:pre"> </span><a href="sip:mod_sofia@192.168.1.168:5060" class="">sip:mod_sofia@192.168.1.168:5060</a></div><div class="">BIND-URL <span class="Apple-tab-span" style="white-space:pre"> </span><a href="sip:mod_sofia@192.168.1.168:5060;maddr=" class="">sip:mod_sofia@192.168.1.168:5060;maddr=</a><font color="#4f7a28" class="">172.17.0.5</font>;transport=udp,tcp</div><div class="">HOLD-MUSIC <span class="Apple-tab-span" style="white-space:pre"> </span>local_stream://moh</div><div class="">OUTBOUND-PROXY <span class="Apple-tab-span" style="white-space:pre"> </span>N/A</div><div class="">CODECS IN <span class="Apple-tab-span" style="white-space:pre"> </span>G729,PCMU,PCMA</div><div class="">CODECS OUT <span class="Apple-tab-span" style="white-space:pre"> </span>G729,PCMU,PCMA</div><div class="">TEL-EVENT <span class="Apple-tab-span" style="white-space:pre"> </span>101</div><div class="">DTMF-MODE <span class="Apple-tab-span" style="white-space:pre"> </span>none</div><div class="">CNG <span class="Apple-tab-span" style="white-space:pre"> </span>13</div><div class="">SESSION-TO <span class="Apple-tab-span" style="white-space:pre"> </span>0</div><div class="">MAX-DIALOG <span class="Apple-tab-span" style="white-space:pre"> </span>0</div><div class="">NOMEDIA <span class="Apple-tab-span" style="white-space:pre"> </span>false</div><div class="">LATE-NEG <span class="Apple-tab-span" style="white-space:pre"> </span>true</div><div class="">PROXY-MEDIA <span class="Apple-tab-span" style="white-space:pre"> </span>false</div><div class="">ZRTP-PASSTHRU <span class="Apple-tab-span" style="white-space:pre"> </span>true</div><div class="">AGGRESSIVENAT <span class="Apple-tab-span" style="white-space:pre"> </span>false</div><div class="">CALLS-IN <span class="Apple-tab-span" style="white-space:pre"> </span>2</div><div class="">FAILED-CALLS-IN <span class="Apple-tab-span" style="white-space:pre"> </span>2</div><div class="">CALLS-OUT <span class="Apple-tab-span" style="white-space:pre"> </span>0</div><div class="">FAILED-CALLS-OUT <span class="Apple-tab-span" style="white-space:pre"> </span>0</div><div class="">REGISTRATIONS <span class="Apple-tab-span" style="white-space:pre"> </span>0</div></div><div class=""><br class=""></div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">but when a call is placed i seems to be incorrect in the SDP</div><div class=""><br class=""></div><div class=""><div class="">2016-04-06 16:29:49.011107 [DEBUG] mod_sofia.c:2353 Ring SDP:</div><div class="">v=0</div><div class="">o=FreeSWITCH 1459942605 1459942606 IN IP4 <font color="#e32400" class="">172.17.0.5</font></div><div class="">s=FreeSWITCH</div><div class="">c=IN IP4 <font color="#e32400" class="">172.17.0.5</font></div><div class="">t=0 0</div><div class="">m=audio 17584 RTP/AVP 8 101</div><div class="">a=rtpmap:8 PCMA/8000</div><div class="">a=rtpmap:101 telephone-event/8000</div><div class="">a=fmtp:101 0-16</div><div class="">a=ptime:20</div><div class="">a=sendrecv</div></div><div class=""><br class=""></div><div class="">Shouldn’t the SDP reflect the Ext-RTP-IP ?</div><div class=""><br class=""></div><div class="">Im sure i’ve missed some sort of config setting or have gone snow blind!.</div><div class="">fs version is FreeSWITCH (Version 1.6.7 -14-d38d065 64bit)</div><div class=""><br class=""></div><div class="">Any ideas will be greatly received.</div><div class="">Thanks</div><div class="">Oz.</div></div>_________________________________________________________________________<br class="">Professional FreeSWITCH Consulting Services: <br class=""><a href="mailto:consulting@freeswitch.org" class="">consulting@freeswitch.org</a><br class=""><a href="http://www.freeswitchsolutions.com/" class="">http://www.freeswitchsolutions.com</a><br class=""><br class="">Official FreeSWITCH Sites<br class=""><a href="http://www.freeswitch.org" class="">http://www.freeswitch.org</a><br class="">http://confluence.freeswitch.org<br class="">http://www.cluecon.com<br class=""><br class="">FreeSWITCH-users mailing list<br class="">FreeSWITCH-users@lists.freeswitch.org<br class="">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users<br class="">UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users<br class="">http://www.freeswitch.org</div></blockquote></div><br class=""></div></div>_________________________________________________________________________<br class="">Professional FreeSWITCH Consulting Services: <br class=""><a href="mailto:consulting@freeswitch.org" class="">consulting@freeswitch.org</a><br class=""><a href="http://www.freeswitchsolutions.com" class="">http://www.freeswitchsolutions.com</a><br class=""><br class="">Official FreeSWITCH Sites<br class="">http://www.freeswitch.org<br class="">http://confluence.freeswitch.org<br class="">http://www.cluecon.com<br class=""><br class="">FreeSWITCH-users mailing list<br class="">FreeSWITCH-users@lists.freeswitch.org<br class="">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users<br class="">UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users<br class="">http://www.freeswitch.org</div></blockquote></div><br class=""></div></div>_________________________________________________________________________<br class="">Professional FreeSWITCH Consulting Services: <br class=""><a href="mailto:consulting@freeswitch.org" class="">consulting@freeswitch.org</a><br class="">http://www.freeswitchsolutions.com<br class=""><br class="">Official FreeSWITCH Sites<br class="">http://www.freeswitch.org<br class="">http://confluence.freeswitch.org<br class="">http://www.cluecon.com<br class=""><br class="">FreeSWITCH-users mailing list<br class="">FreeSWITCH-users@lists.freeswitch.org<br class="">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users<br class="">UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users<br class="">http://www.freeswitch.org</div></blockquote></div><br class=""></div></div></body></html>