- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- CN-Series
- VM-Series:
- Private Cloud
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
VoIP over NAT issues: Ring but no audio; disconnects
- LIVEcommunity
- Collaboration
- Discussions
- General Topics
- Re: VoIP over NAT issues: Ring but no audio; disconnects
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
VoIP over NAT issues: Ring but no audio; disconnects
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
05-01-2012 12:10 PM
I have our VoIP PBX set up with an IP on our external side via NAT. The policy is a simple static NAT from the internal IP to the external. I also have the correct security policies in place to allow SIP/RTP traffic to pass freely to and from the external IP address. The PBX server can be accessed via HTTP from outside our network, and my cell phone (using BRIA) can successfully register to the PBX.
However, whenever I make a call from outside, it will disconnect after seven (7) seconds when picked up. This happens every time without fail. I have tried tweaking around security policies, enabling application override, and altering the NAT rules.. nothing seems to help.
Can anyone give me suggestions? This setup worked perfectly fine on our old Juniper SRX-240B with the PA-500 in vWire. Ever since I swapped the PA-500 into being our gateway/firewall, it just won't do it.
More information can be provided upon request.
Thanks,
Logan
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
06-14-2012 11:34 AM
Yesterday i have sesion with support from LA and waiting for solusion.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
06-24-2012 05:40 PM
Hi
did u resolve problem
regards
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
06-25-2012 06:27 AM
I had the same problem and finally pointed the outside interface of the VOIP PBX to the internet bypassing the PAN. It has a built in firewall that's satisfactory for it's purpose. I created a zone on the PAN to get to he voice subnet for secure management of the VOIP PBX and also to keep the voice subnet off my internel network. It works for now.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
06-27-2012 11:35 AM
yes, my problem is resolved. support offered in my case to use application ovverride for sip application, and it's work.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
09-17-2012 01:31 AM
Hi
I'm experiencing the same problem. Could you provide details of the application override fix please?
Mine looks like this, but is not working;
The 10. address is our PBX, the 80. address is the remote PBX and the 5. address is our external IP.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
09-18-2012 04:20 AM
Over three hours on the phone to PA support this morning got it sorted.
My applictation override rules were not working, as they were pointing at predefined applications. Custom Apps for both SIP and RTP were created which then started to allow some RTP through.
We were still getting quite a few calls with no audio (some were coming through). The PA engineer discovered that this was due to us using the dynamic-ip-and-port option in our outgoing source translation. Changing this to static-ip fixed it.
Here's what my working setup looks like;
Security Rules;
NAT Rules;
Application Override Rules;
Custom SIP Application;
Custom RTP/RTCP Application;
Hope this helps anybody experiencing similar problems. PA have taken a support dump, so may have a more elegant fix at some point.
- WAN Interface IP change - after Wildix phones still work, Yealink phones don't! in General Topics
- GP_VPN Disconnection Issue in GlobalProtect Discussions
- 3CX (Phone System) calls are disconnecting randomly in General Topics
- GlobalProtect Random disconnects in GlobalProtect Discussions
- One way audio - SIP/NAT Issues in General Topics
Show your appreciation!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
