GCITech
asked on
DMZ troubleshooting
I am using a DDWRT router. I have a SIP phone system in the DMZ of the router. I can call out, but cannot receive calls. The packet capture on the SIP server, shows "error 404 - forbidden" when the number is called. To test, I went to a website that checks for open ports, and told it to check for the port I am using, on my WAN address. Port is reported closed. Being the port i am querying, is actually on a device behind the WAN address, and that port is not really being forwarded to the device, however the device is in the DMZ, is that the expected behavior? How to test, if that port can be reached from the outside.
Are you not port forwarding from the outside to the IP on the DMZ for that/those ports?
ASKER
I am not forwarding any ports, as I thought if the device was in the DMZ, it was exposed to all ports. Is that not how it works?
No. The DMZ is the zone that is less secure than than your internal zone but is inside your network.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If the SIP server is external and is not from an internal domain, split-DNS is not the problem.
Either way, he needs to allow the SIP server to originate a connection to his phone by forwarding those ports to the IP in the DMZ.
Either way, he needs to allow the SIP server to originate a connection to his phone by forwarding those ports to the IP in the DMZ.
ASKER
split dns settings are probably taken care of in NAT settings portion of the phone server, and that is why it resolved the issue. Thanks..