On Wed, 21 Nov 2007 12:07:14 -0500, Jeremy Jackson wrote: > Ok, going back to the beginning... if you only have one public IP, you > will use nat. w2k3 RRAS is probably configured with rules to handle the > extra issues with the VoIP protocols... you never said which one, SIP, > IAX2, H.323, MGCP... > > Linux comes blank, no iptables rules, you have to add extra iptables > rules to deal with VoIP. It's probably easier than your bridge setup. > even a $50 d-link router can do this easily. > > If you are using SIP ip_nat_sip kernel module can help add the abillity. > > This is more of a VoIP problem than a linux-net problem, try this: > > > http://www.voip-info.org/wiki/view/Linux+Router > > and for the actual port forwarding: > > http://www.voip-info.org/wiki/view/port+forwarding > > You should also consider using a STUN server outside your network for > your voip devices to figure out the type of NAT. > > > On Wed, 2007-11-21 at 16:40 +0000, Mateus Interciso wrote: >> On Wed, 21 Nov 2007 10:28:00 -0600, Matt Zagrabelny wrote: >> >> > On Wed, 2007-11-21 at 16:11 +0000, Mateus Interciso wrote: >> >> On Wed, 21 Nov 2007 13:04:40 +0000, Mateus Interciso wrote: >> > >> > [...] >> > >> >> Maybe, if I explain a little more about the fisical network we have, >> >> it may be easier to understand(or find the problem) >> > So, It's SIP, and I tryed the ip_nat_sip (actually nf_nat_sip as it's called in 2.6.20 as far as I know), and it didn't worked, I tryed as well to use siproxd, but since I have no control over the Telio Sipura box, I can't configure it acordingly, it's very strange, since the incoming IS port 5060, and rtp traffic on 16300-16700, which where allowed and redirecting traffic normally, but siproxd just can't see this :O Since the VoIP worked strange (calls from and to Brazil (where we are) worked just fine, but calls to and from norway (where Telio is) didn't worked, we could make the call, answer the phone, but no audio went in any side). Since this is a company, we needed the phone fast, and now it's working with the bridge, so I'm more or less happy, I really don't want to let the network like this mess, so I'll continue researching. I did checked the links you sent me, but they didn't helped, all the things they say to do, either was done, or I did and nothing change. Taking a look at google, and Sipura web site, I found that the Sipura 2k box has a web interface, where we can set it to know it's behind a NAT, but Telio doesn't want us to mess around with their boxes configuration, so it's all blocked out, and prone to kick us out of the plan if we fiddle around with it, so it's a no go. Since it worked before with the Windows RRAS, even if it's NAT, it has to have something different, so I opted to put the network back as it was, and build a bridge firewall, for now it's working. Ok, that was a long resume of what happened till now, what I'll try to do now is this: I do have a small network at my home, where I can test freely this things, and is very similar of the office, but withouth the w2k3 server, so I'll try to install Zebra to route the internet, I don't know if this will work, but If I manage to make it work, I'll bring this god forsaken Sipura box there, and see what happens. I'll try fiddling around with the kernel as well, so any advice, I'll be gladly to hear :D Once again, thanks a lot for all your support. Mateus - To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
