Hi, you should try and get support for asterisk related stuff on #asterisk on freenode. There's a good SIP over NAT guide at: 18:13 < jbot> [~sipnat] Quick guide on configuring * + SIP behind NAT : http://www.aocomputing.net/?p=3 otherwise check the WIKI at: http://www.voip-info.org/wiki/view/Asterisk+SIP+NAT+solutions When you're dialing from your xlite, are you trying another extension on the same network? Cheers, Fernando > -----Original Message----- > From: Indunil Jayasooriya [mailto:indunil75@xxxxxxxxx] > Sent: Wednesday, 12 September 2007 6:11 PM > To: CentOS mailing list; LARTC > Subject: ASTERISK BOX behind a filewall > > Hi All, > > I want to put a ASTERISK BOX bend a Firewall. So I have given below > rules. > > > iptables -A FORWARD -p udp -d 192.168.101.30 <http://192.168.101.30> - > m multiport --dports 3478,4569,5060 -m state --state NEW -j ACCEPT > iptables -A FORWARD -p udp -d 192.168.101.30 <http://192.168.101.30> - > -dport 10000:20000 -m state --state NEW -j ACCEPT > > iptables -t nat -A PREROUTING -p udp -i eth0 -d 1.2.3.4 -m multiport -- > dports 3478,4569,5060 -j DNAT --to-destination > 192.168.101.30 <http://192.168.101.30> > iptables -t nat -A PREROUTING -p udp -i eth0 -d 1.2.3.4 --dport > 10000:20000 -j DNAT --to-destination 192.168.101.30 > <http://192.168.101.30> > > pls assume 1.2.3.4 is the ip that connects to the internet. > > > I use Xlite sotphone to talk. I can register. it says user ready. I can > dial extentions as well. But , WHEN I talk , Both parties can not hear > anyrhing. > > in rtp.conf file, PORT 10000 to 20000 are also available. > > > Hope to hear from you. > > > -- > Thank you > Indunil Jayasooriya _______________________________________________ LARTC mailing list LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
