07-07-2020 01:17 AM
Hi All, Im a Telephone system installer and have installed a system with SIP trunks which authenticate with the public IP (not register user name/password)
The SIP trunks remain working at all times for outgoing fails after a time normally about a day. the firewall is a palo alto PA220
the SIP provider tells me they are trying to communicate on a port other than 5060 and as a result the incoming call fails to get through the firewall. I have asked the I.T company to allow all traffic from the SIP providers IP and he said he has. The incoming was working since last friday the 3rd July but this morning the calls are failing again and the SIP provider now say its trying to use :5164 to establish the call. Any ideas what the IT need to set to make sure it communicates on port 5060 only and not try to change the port and this can be locked down to one single IP from the SIP provider ?? thank you J
07-08-2020 12:49 PM
Sounds like the PAN admin may not actually be setting up a static port translation for this traffic and it's just hitting a DIPP NAT. They'll want to ensure that the source address translation type isn't interfering with the source port (IE: A Dynamic IP or Static NAT entry).
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
