Voip external server

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Voip external server

L0 Member

I'm experiencing an issue with a connection to an external voip server.

Directly attached to a PA-500 ethernet port there is a patton (fxo voip appliance).

Now, I'm allowing any traffic to outside, any application.

When I surf from that interface I can access external sites, but the issue seems to be NAT.

Voip uses port 5060 udp.

I can see the packets reaching the external server (that I manage) and they are forwarded back, but on the PA they are not present.

I tried different NAT types, but none of them seems to be working properly.

Does anyone experienced the same issue?

Does anyone know how to solve the problem of udp coming back to the internal interface of the firewall?

Thanks to all of you,

Pietro

5 REPLIES 5

L3 Networker

Is the proxy server able to establish a sip session successfully with the external server ? Is the proxy server a nat aware device( does it know its public ip address ) ?

L4 Transporter

have you tried a static bi-directional nat for this traffic.

Please read this topichttps://live.paloaltonetworks.com/message/15066#15066

it could help you - try to use application override

regards

SLawek

The external server is well known by the patton.

It arrives and the landing packet reaches the target.

When the packet is sent back everything stops.

Now I'm trying the hint given by slv. Smiley Happy

L2 Linker

Last post on

  • 3902 Views
  • 5 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!