Connect to Asterisk from WAN (Behind Cisco ASA)

Hello all,

I need to allow about a dozen remote employees to access our Asterisk server with their Polycom 450's without the use of VPNs.

I've moved the * server to the DMZ interface on our ASA, and have assigned it a public IP.

In sip.conf I've added externip = xx.xx.xx.xx

On the ASA, I've opened up the following ports to the * server:
5060-5082 UDP
10001-20000 UDP
and
69 UDP (for TFTP access).

I cannot get the phones to connect to the server.  I've also tried/failed connecting X-Lite as well.

Any help is greatly appreciated.
LVL 2
jclesterAsked:
Who is Participating?
 
jclesterConnect With a Mentor Author Commented:
I just figured out the issue... I have a VPN tunnel between my home and the location where the asterisk server lives.

For my testing I had been disabling the VPN, but my NAT exemption to the DMZ was still in place, and that was the problem.

I removed the exemption, and everything works properly.
0
 
jclesterAuthor Commented:
The ASA can most likely be ruled out as an issue, packet tracer confirms that the traffic is being allowed through.

That being said, I'm still unable to connect the phone to the PBX.  The built-in firewall and SELinux are both disabled on my PBX too.
0
 
memo_tntCommented:
do you get any logs on your asterisk server ?
0
 
jclesterAuthor Commented:
Resolved issue.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.