You have almost the same problem as me, only the other way around (my
phones are behind the monowall which doesn't allow tftp, and the
asterisk server is on the wan side for me).

Best bet would be to put the asterisk server in the DMZ if possible. If
not possible:

1) With the monowall installed, are the phones registered to the
asterisk server?
2) What version are you running (monowall)?
3) Ports 5060 & 5061 UDP are used in both directions
4) Depending on what phones you have, Ports 69 UDP, 53 UDP, 123 UDP and
9001 UDP are used for inbound requests
5) Ports 10,000 - 20,000 UDP are used for both inbound & outbound
traffic.

* Any LAN rules that could be blocking any traffic?
* Put a hub on the WAN side of the monowall , run ethereal
(www.ethereal.com) to sniff the packets and let me know what you see.
Also put it on the LAN side and also let me know what you see.
* With the cisco phones, I've seen RTP traffic up the 35000 UDP range. 

-----Original Message-----
From: Brian Watters [mailto:brwatters at abs dash internet dot com] 
Sent: Sunday, April 24, 2005 12:40 PM
To: m0n0wall at lists dot m0n0 dot ch
Subject: RE: [m0n0wall] Inbound SIP to Asterisk Server behind m0n0wall

 WoW, is the list serv broken or Is this project dead? .. Have a missed
something as I have seen little if any traffic on this list .. Anyone
out
there? .. Manuel you alive? .. Anyone have any ideas on this issue
below?

BRW
 	 
 	 

-----Original Message-----
From: Brian Watters [mailto:brwatters at abs dash internet dot com] 
Sent: Friday, April 22, 2005 10:17 PM
To: m0n0wall at lists dot m0n0 dot ch
Subject: [m0n0wall] Inbound SIP to Asterisk Server behind m0n0wall

Hello all,

Here is our problem .. 

IP SIP phones remote ..

They will connect to our IP PBX (Asterisk Server) without issue how no
voice
makes it when anyone answers a phone call made by one of these IP
phones.

So this means SIP is working but RTP is not, Here is what I currently
have
on the firewall.

Firewall Rules

TCP/UDP  *  *  192.168.2.253  5060  NAT SIP Protocol     
UDP  *  *  192.168.2.253  4569  NAT IAX Protocol     
UDP  *  *  192.168.2.253  5036  NAT IAX Protocol     
UDP  *  *  192.168.2.253  10000 - 20000  NAT RTP UDP  

NAT Rules

WAN  TCP/UDP  5060 - 5099  192.168.2.253  5060 SIP Protocol      
WAN  UDP  4569  192.168.2.253  4569  IAX2 Protocol      
WAN  UDP  5036  192.168.2.253  5036  IAX Protocol      
WAN  UDP  10000 - 20000  192.168.2.253  10000 - 20000  RTP UDP Range  


So I am stumped as to why this does not work .. I have logging turned on
for
all of the above and see no packets getting dropped .. Anyone there able
to
shead some light on this .. Is m0n0wall SIP awear like a Cisco PIX ??


Brian




---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch




---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch