Video apps fail to setup video

Started by bubbagump, July 12, 2021, 05:32:23 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 12, 2021, 05:32:23 PM
I have several apps that fail to setup video. Audio typically works. What'sApp and FaceTime are the main offenders. Zoom seems to be fine. Has anyone had experience with this? Any fixes? This feels like a similar issue to SIP back in the day where the media portion of the call is not setting up properly as there is no proxy. But every consumer cheapo router works with these protocols, so I am sure OPNSense can as well. I'm on 21.1.8 FWIW. Thoughts?
July 12, 2021, 07:32:06 PM #1
Quote from: bubbagump on July 12, 2021, 05:32:23 PM
I have several apps that fail to setup video. Audio typically works. What'sApp and FaceTime are the main offenders. Zoom seems to be fine. Has anyone had experience with this? Any fixes? This feels like a similar issue to SIP back in the day where the media portion of the call is not setting up properly as there is no proxy. But every consumer cheapo router works with these protocols, so I am sure OPNSense can as well. I'm on 21.1.8 FWIW. Thoughts?
Will be a problem with RTP traffic.

But we need more informations

- network plan
- rule overview
- nat settings
(Unoffial Community) OPNsense Telegram Group: https://t.me/joinchat/0o9JuLUXRFpiNmJk

PM for paid support
July 12, 2021, 07:54:06 PM #2
Network plan wise, there isn't much to it. NAT wise, it is the default out of the box NAT. It is set to hybrid NAT for a Wireguard tunnel, but this all goes through the primary NAT through the primary gateway created out of the box. The traffic originates on the out of the box LAN too. Screenshots here: https://imgur.com/a/t7RDOun
July 13, 2021, 08:12:34 AM #3 Last Edit: July 13, 2021, 08:15:58 AM by lfirewall1243
Quote from: bubbagump on July 12, 2021, 07:54:06 PM
Network plan wise, there isn't much to it. NAT wise, it is the default out of the box NAT. It is set to hybrid NAT for a Wireguard tunnel, but this all goes through the primary NAT through the primary gateway created out of the box. The traffic originates on the out of the box LAN too. Screenshots here: https://imgur.com/a/t7RDOun
create a network plan

And what kind of router/modem,... is in front of your opnsense ?
(Unoffial Community) OPNsense Telegram Group: https://t.me/joinchat/0o9JuLUXRFpiNmJk

PM for paid support
July 13, 2021, 02:31:09 PM #4
Network plan:

Client > 16 port switch > LAN port > OPNSense > WAN port > Modem

The modem is ISP supplied CPE... an Arris something. It is set to bridge mode and the OPNSense holds the IP. There is no double NAT if that is what you were after.
July 14, 2021, 12:11:29 AM #5
My setup is very similar with the addition of eeros as Access Points in bridged mode for the wifi clients.
No problems here with video over wifi or wired. MS Teams, Zoom, WhatsApp, all work fine.
I have Unbound doing DHCP server duties, a pihole and Stubby for DoT by the way that could have complicated the setup. No IPv6 just 4. I hope this helps.
July 14, 2021, 12:41:26 AM #6
That's actually quite helpful in that it makes me want to do a pcap and dig deeper. This is going to turn out to be something stupid I've overlooked I bet.
July 14, 2021, 10:58:19 AM #7
If you want me to check any settings to compare, just let me know. I'm on 21.1.8_1-amd64 too.
Print
Go Up Pages1
User actions