Text only | Text with Images

OPNsense Forum

Archive => 21.1 Legacy Series => Topic started by: bubbagump on July 12, 2021, 05:32:23 PM

Title: Video apps fail to setup video
Post by: bubbagump on July 12, 2021, 05:32:23 PM
I have several apps that fail to setup video. Audio typically works. What'sApp and FaceTime are the main offenders. Zoom seems to be fine. Has anyone had experience with this? Any fixes? This feels like a similar issue to SIP back in the day where the media portion of the call is not setting up properly as there is no proxy. But every consumer cheapo router works with these protocols, so I am sure OPNSense can as well. I'm on 21.1.8 FWIW. Thoughts?
Title: Re: Video apps fail to setup video
Post by: lfirewall1243 on July 12, 2021, 07:32:06 PM
Quote from: bubbagump on July 12, 2021, 05:32:23 PM
I have several apps that fail to setup video. Audio typically works. What'sApp and FaceTime are the main offenders. Zoom seems to be fine. Has anyone had experience with this? Any fixes? This feels like a similar issue to SIP back in the day where the media portion of the call is not setting up properly as there is no proxy. But every consumer cheapo router works with these protocols, so I am sure OPNSense can as well. I'm on 21.1.8 FWIW. Thoughts?
Will be a problem with RTP traffic.

But we need more informations

- network plan
- rule overview
- nat settings
Title: Re: Video apps fail to setup video
Post by: bubbagump on July 12, 2021, 07:54:06 PM
Network plan wise, there isn't much to it. NAT wise, it is the default out of the box NAT. It is set to hybrid NAT for a Wireguard tunnel, but this all goes through the primary NAT through the primary gateway created out of the box. The traffic originates on the out of the box LAN too. Screenshots here: https://imgur.com/a/t7RDOun (https://imgur.com/a/t7RDOun)
Title: Re: Video apps fail to setup video
Post by: lfirewall1243 on July 13, 2021, 08:12:34 AM
Quote from: bubbagump on July 12, 2021, 07:54:06 PM
Network plan wise, there isn't much to it. NAT wise, it is the default out of the box NAT. It is set to hybrid NAT for a Wireguard tunnel, but this all goes through the primary NAT through the primary gateway created out of the box. The traffic originates on the out of the box LAN too. Screenshots here: https://imgur.com/a/t7RDOun (https://imgur.com/a/t7RDOun)
create a network plan

And what kind of router/modem,... is in front of your opnsense ?
Title: Re: Video apps fail to setup video
Post by: bubbagump on July 13, 2021, 02:31:09 PM
Network plan:

Client > 16 port switch > LAN port > OPNSense > WAN port > Modem

The modem is ISP supplied CPE... an Arris something. It is set to bridge mode and the OPNSense holds the IP. There is no double NAT if that is what you were after.
Title: Re: Video apps fail to setup video
Post by: cookiemonster on July 14, 2021, 12:11:29 AM
My setup is very similar with the addition of eeros as Access Points in bridged mode for the wifi clients.
No problems here with video over wifi or wired. MS Teams, Zoom, WhatsApp, all work fine.
I have Unbound doing DHCP server duties, a pihole and Stubby for DoT by the way that could have complicated the setup. No IPv6 just 4. I hope this helps.
Title: Re: Video apps fail to setup video
Post by: bubbagump on July 14, 2021, 12:41:26 AM
That's actually quite helpful in that it makes me want to do a pcap and dig deeper. This is going to turn out to be something stupid I've overlooked I bet.
Title: Re: Video apps fail to setup video
Post by: cookiemonster on July 14, 2021, 10:58:19 AM
If you want me to check any settings to compare, just let me know. I'm on 21.1.8_1-amd64 too.
Text only | Text with Images