3CX app connection problem outside my network. [Solved]

Started by Silver77, September 06, 2020, 01:43:12 PM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
September 07, 2020, 01:52:49 PM #15
nSince it seems a urgent problem, you should consider paid support.
All support given here is free and voluntary service.
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
September 07, 2020, 01:59:19 PM #16 Last Edit: September 07, 2020, 04:14:18 PM by Silver77
3CX does not provide support for firewall issues.  in any case it is a problem of port openings towards the dmz.  it's my first time setting up a DMZ on Opnsense and I don't have much experience.  the DMZ has no problems with the LAN is the WAN access the problem.


Inviato dal mio iPhone utilizzando Tapatalk
September 07, 2020, 04:47:13 PM #17
Thought more of some OPNsense support. To debug this further a remote connection or remote support session would be the best thing. Consider to buy some support and get things sorted out for you.

One thing that came to my mind looking on your NAT rules is that you're pointing them to the "This Firewall" Alias. Can you please change them to the incoming interface. For Example "WAN Address" or the IP of your WAN if you have fixed IP?

"This Firewall" contains all configured local IPs and maybe leads to unnecessary NAT rules.
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
September 07, 2020, 08:14:11 PM #18 Last Edit: September 07, 2020, 08:54:47 PM by Silver77
yes I have several public ip I have configured one as virtual ip assigned to the dmz.  I had already tried to set both the public IP and the wan address, nothing changes.
Thanks Banym for your help,
but where are the opnsense experts ???  maybe they started using ZyWall ????
[emoji1787][emoji1787][emoji1787][emoji1787][emoji1787]
September 07, 2020, 09:29:37 PM #19
What do you mean by you have assigned the virtual ip to the dmz? Please show the virtual IP configuration.

To make it short.
You should screenshot all the configuration you made and upload it here or link to it.
Please make a network diagram how you want to configure it.

Why are you using outbound NAT rule and what do you want to do with it?
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
September 07, 2020, 09:39:30 PM #20 Last Edit: September 07, 2020, 09:41:48 PM by Silver77


I'll do the diagram tomorrow.
What alternative do I have to the bar roules?
September 07, 2020, 09:55:40 PM #21
Well, that virtual IP is not on OPT2 it comes in on WAN like all your other public IPs.
In my understanding your DMZ is OPT2 and that is a local address.

Please create that virtual IP on your WAN.

The hybrid outbound rules maybe should be removed, too.
For testing switch it to automatic.

I think you want to create a new outbound rule later to NAT your DMZ to the incoming virtual IP but first verify try with automatic rules until the inbound NAT works.
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
September 07, 2020, 10:02:24 PM #22
great you found the problem, i stated the virtual ip to the wan and now it works.  Thank you so much


Inviato dal mio iPhone utilizzando Tapatalk
September 07, 2020, 10:45:53 PM #23
you are welcome.

please mark the thread as solved by editing the subject in your first post and add [solved] to it.
Thank you and enjoy your OPNsense.
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
September 07, 2020, 10:56:08 PM #24
yes sure now i do.  You're right outbound rules are no longer needed.  but before with these I was able to use 3CX in the office.  now the 3CX test passes even if I disable them
Print
Go Up Pages 1 2
User actions