SonicWall TZ205 open all ports for phone

We are testing out a ShoreTel IP phone and all ports are open but it keeps losing service and disconnecting calls.  It can log in so it seems the ports are all open, however ShoreTel support is saying there might be a port that they missed when giving me the port numbers.  Yeah, great tech support they have....

Anyways, I need to open the IP address of the phone up to all ports just for testing to see if it is a port issue or not.  I have disabled all Antivirus and Intrusion Prevention on the SonicWall TZ205 and the issue is repeating.

I can not find anything on how to open up all ports and basically whitelist this IP for everything.  Could someone help?  In a big hurry.

SonicWall TZ205W
joeshinallAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

carlmdCommented:
On the firewall rules from WAN to LAN enter a permit all rule for that ip (you may need to create an address object). Make sure that rule is at the top of the list when done (use arrows to move up).
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
PhonebuffCommented:
Also, you want both IP  TCP and UDP protocols, but if this is SIP then you should be able to open just 5060 & 5061 for SIP and 1000 - 25000 for RTP  and no expose yourself to the world.

Also, while based on Asterisk it's still SIP so you might want to visit this page -
http://pbxinaflash.com/community/index.php?threads/former-sonicwall-resource-by-hbonath.12549/
0
joeshinallAuthor Commented:
Perfect answer Carlmd.  I made a NAT policy but still was not working.  After doing the access rule I was able to allow the phones access to the tftp site as needed.

phonebuff, the only ports you mentioned that had to be opened were 5060 and 5061. Along with 5 other ports and a range of ports from 16328 to somewhere around 32000.  It's a ShoreTel Sky system and they weren't much help on the port side.  They gave me the ports needed and said "by the way, there may be some more that I'm unsure of"....
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.