OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: mircsicz on May 20, 2019, 06:05:51 pm

Title: [SOLVED] 3CX Firewall Test fails even though Firewall > NAT > Outbound is Hybrid
Post by: mircsicz on May 20, 2019, 06:05:51 pm

Hi all,

I've read and followed those three thread's: https://forum.opnsense.org/index.php?topic=448.0 (https://forum.opnsense.org/index.php?topic=448.0) and https://forum.opnsense.org/index.php?topic=7299.msg32981#msg32981 (https://forum.opnsense.org/index.php?topic=7299.msg32981#msg32981). Especially the last one has a very specific solution but sadly that does not help with the current version of 3CX

This is what the test tells:
(https://snag.gy/mX9xT6.jpg)

This is what I've setup in OPNsense (BTW: 19.1.7)
(https://snag.gy/Yp1H4I.jpg)

This is the Forwardings:
(https://snag.gy/9NYw1n.jpg)
Doesn't make a difference if I disable or enable those rule's...

And yes as this is Multi-WAN there's a rule to tell the 3CX to only use VDSL:
(https://snag.gy/lNYJ9k.jpg)

The Document supplied by 3CX neither isn't very supportive, it's just telling in detail why the test is correct: https://www.3cx.com/docs/firewall-checker/ (https://www.3cx.com/docs/firewall-checker/)

So I'm kinda lost with this, and 3CX totally refuses any further support until firewall test gets "GREEN"

Title: Re: 3CX Firewall Test fails even though Firewall > NAT > Outbound is set to hybrid..
Post by: mircsicz on May 21, 2019, 09:55:48 am

Reply, answer and solution to my own question:

Reread the Doc's: https://www.3cx.com/docs/pfsense-firewall/ (https://www.3cx.com/docs/pfsense-firewall/)

DON'T USE PORT LISTS IN ALIASES!!!!

(https://snag.gy/nKiEwm.jpg)

(https://snag.gy/CE2Uwc.jpg)

leads to:

(https://snag.gy/zNHQTs.jpg)