Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - sipdude

Pages: [1]

German - Deutsch / Re: OpnSense sperrt ip Adresse ausgehend

« on: October 23, 2023, 09:20:38 pm »

Höng doch mal nach Möglichkeit einen Laptop mit der IP der 3CX direkt an die Firewall und schaue, ob es wirklich an der Firewall liegt. Ich hatte grad heute ein ähnliches Phänomen. Kein Netzwerk mehr. Nachdem ich das Kabel vom Switch zur Firewall aus- und einsteckte ging es wieder bestens.

23.7 Legacy Series / Re: 3CX behind OPNsense registering on Fritzbox

« on: October 23, 2023, 09:11:23 pm »

Thank you for your reply.
I've now reconfured the whole story..
Now the PBX and the phones are on the Network of the Fritzbox. This network is shared over vLAN ober all Switches. DNS queries are going through the firewall to unboundDNS. This way I have all I need.
I think over the firewall it would make problems in this constellation.
However, many thanks for your efforts in this, learned some new things again

23.7 Legacy Series / Re: 3CX behind OPNsense registering on Fritzbox

« on: October 22, 2023, 01:46:12 pm »

Thanks again for your help.
When removing the NAT outgoing rules, this should not affect the Wireguard VPN, right?
As I'm connected remotely at the moment..

23.7 Legacy Series / Re: 3CX behind OPNsense registering on Fritzbox

« on: October 22, 2023, 09:43:17 am »

Thanks again for your reply.
As I'm a beginner with OPNsense (coming from Sonicwall), I haven't realized a "transparent mode" with OPNsense yet.
However, this would still be possible. I could change the IP range on the Fritzbox to the internal LAN.
But, as there is a 2nd vLAN on the firewall, I'm not sure how to set this up correctly.
Is this the right way to go?
https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-transparent-filtering-bridge-on-opnsense

23.7 Legacy Series / Re: 3CX behind OPNsense registering on Fritzbox

« on: October 21, 2023, 08:33:01 pm »

Thank you for your answer.
The problem is, I need internam DNS and vLANs, which works fine with the OPNsense.
On the other side, I need ot connect to this weird setup to get onto the SIP line, which is autoprovisioned from the provider to the Fritzbox. They don't want to direct connect to their environment.
Please find attached some overviews..

23.7 Legacy Series / 3CX behind OPNsense registering on Fritzbox

« on: October 21, 2023, 05:38:46 pm »

Hi all.

I have the following setup:
Fritzbox with registered SIP-lines > OPNsense > 3CX PBX
The VoIP-Provider needs this setup with the Fritzbox.
I've set the OPNsense WAN on Fritzbox as exposed host.
I've opened the relevant ports to 3CX as usual in NAT.
For the outgoing NAT, I've configured Hybrid outbound NAT and set a manual rule for static ports.
the 3CX firewall checker goes through with only a problem on port 5060. This port has been configured as well on the firewall/NAT.
The SIP-trunk on the 3CX registered successfully. I can place calls, but can't hear anything (both ways). Incoming calls are not ringing.
The SIP-line works fine, if I configure the 3CX directly on the Fritzbox with no firewall in between.
Does anyone has an Idea how to fix this?
Thank you.

Pages: [1]