[Freeswitch-users] mod_verto with standart firewall ports

Pascal Hari Pascal.Hari at csa.ch
Tue Dec 19 12:58:16 UTC 2017 

Hello

I'm new to FreeSWITCH and made a setup where everything is behind the same NAT. I have a linux debian 8 server where FreeSWITCH is running on and I'm able to connect different clients (SIP and WebRTC). I'm using the demonstration configuration which come with the FreeSWITCH installation. I mostly followed the instruction "Quick Start FreeSWITCH Demo With Verto Communicator<https://freeswitch.org/confluence/display/FREESWITCH/Debian+8+Jessie#Debian8Jessie-Scriptinstallfreeswitchdemowithverto_comunicator>" but used apache2 instead of nginx.

Now I want that same setup but on a server in the web with public IP. I'm running a linux debian 8 in azure and installed everything accordingly to the "behind the Nat" setup.
I use real (trusted) certificates and can reach the WebRTC client over https. If I'm in the public network of our company I can log in, dial a number and connect to FreeSWITCH (according to the dialplan). If I'm in the corp (internal) network of our company I cannot log in. I only get the message "Waiting for server reconnection". Even in FreeSWITCH (fs_cli) I don't see a request.
For me this sound like a firewall issue and many post say to open ports (16384-32768, 5066, ...). I don't have this option because I can't change our companies firewall. And I'm anyway looking for a solution to provide a WebRTC client which can be used in a normal company network with relatively strict firewall rules. Workarounds like VPN-tunnel are also not a wanted solution because I want a really easy setup on the client (WebRTC) side.

Am I missing a step? Is my guess with the firewall right or could it be something else? Is there a way to configure FreeSWITCH and verto communicator to use other ports?
Thanks already for suggestions.

Best regards,

Pascal Hari
SW Developer

CSA Engineering AG
______________________________________________________________________________________________
Confidentiality Note: This message is intended only for the use of the named recipient(s) and may contain confidential and/or privileged information. If you are not the/an intended recipient, please contact the sender and delete this message. Any unauthorized use of the information contained in this message is prohibited.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20171219/fadcc9f7/attachment-0001.html>

More information about the FreeSWITCH-users mailing list