asked on

Macic Jack Dilemma

Hello again All:

After setting up my network, I realized that my Magic Jack no longer works. I get a dial tone but when I try to dial, nothing, same dial tone. I assume it's something in the way my network is set up since the Magic Jack was working prior to the routers. I've attached the router config files as wll as an image of what my network looks like. Please help, thanks.
Cisco-1760-Router-1.txt
Cisco-1760-Router-2.txt
Magic-Jack-Dilemma.jpg

hmarcbower

Below is the exact list of the TCP and UDP Ports that I had to open in my firewall and router (NOT port forward) to achieve 100% connectivity:

TCP Ports List: 80 (HTTP), 443 (HTTPS)

UDP Ports List: 5060, 5070, 10000-65535

hmarcbower

Sorry, meant to include the link to where I found that:
http://www.moushigo.com/index.php/2009/01/29/magicjack-installation-firewall-setup-and-port-settings/

Music_Man608

ASKER

How do I open them? I used the following command on both routers and I thought I opened everything up:

Access-list 100 permit ip any any

is that alli have to do or is there more? I'm a router rookie so I'm not really good with advancd commands. Thanks for answering.

Soulja

Because you are using natting, you will need to create a nat statements allowing traffic to your majicjack ports .

Soulja

You don't have any access-list applied to any interfaces, so that is not a factor.

Music_Man608

ASKER

How do I add nat statements for this?

ASKER CERTIFIED SOLUTION

Soulja

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

Music_Man608

ASKER

Awesome, one Last thing, can you tell me which router on the diagram gets these commands? Thanks.

Soulja

Oh Sorry, Router 2. Now if you decide you want to implement your access-list you will need to allow these port through. As of now since you don' t have any access lists applied it shouldn't be an issue.

Music_Man608

ASKER

Ok, I did everything you said and still a no go. I did plug it into another computer that sits behind the PIX and it worked just fine. Still something wrong when I plug it into the DMZ computer though. Are you sure I don't have to do anything to router 1? Thanks again for your help.

Soulja

Repost the configs as they stand now, including pix.

Music_Man608

ASKER

Here ya go, thanks.
PIX-501.txt
Router-1.txt
Router-2.txt

Music_Man608

ASKER

Hello again, I modified the network design. Here's a picture of the new design along with the configs. Magin Jack still doesn't work but if I plug it into a computer on the 192.168.35.x network, it works fine. I figures this design might be easier to play with. Thanks.
Network-Design.jpg
Router.txt
PIX.txt

hmarcbower

Well, that does seem to eliminate any element except the PIX. There are folks on this thread who know the guts of the routers (which I do not), but in a general sense it would seem to me that you have rules to pass the MJ from the intranet interface through to the external interface, but not from the DMZ interface through to the external interface.

Music_Man608

ASKER

Which rule needs to be added? I put an access list in place allowing all traffic out from the DMZ. I could add a rule to allow all traffic into the DMZ but is that a good idea?

hmarcbower

Compare the rules you have that go between the external/intranet interfaces with the rules in place between the external/DMZ interfaces. Sadly I don't know details about what commands or access list entries need to be there, but if it works from the intranet, then there's something missing to the DMZ that is present to the intranet through the PIX.

Music_Man608

ASKER

Hello all,

After much frustration and playing around with this problem, I found that it was a simple sound card issue. The Magicjack displayed "No Audio Found" and when I happened to ee this, I re-installed the sound card drivers and all is well. Thanks for everybodys time and effort on this issue.

Music_Man608

ASKER

In addition to my last comment, I also had to add the router statements outlined above.