SIP Not Going Through Firewalla in Limited Mode

Follow

Matthew S. Webb Jr.

• January 04, 2022 19:28

Hello all. I am trying to find a way to get around the need for Site-To-Site VPN Boxes such as Cisco RV-180s for Work From Home users that my company has been using for years and go to a Firewalla based solution. 

I have but a Blue+ behind my Watchguard Firewalla in the main office and here is the main configuration at this point...

Main Office LAN (Watchguard): 10.10.10.x/23 / SNAT to Firewalla Blue+ for VPN

Office Firewalla Blue+ (On Main VLAN) : LAN 10.10.10.150 / Overlay 192.168.100.1 / Limited Mode

OPENVPN Network (On Firewalla Blue+): 10.102.90.1/24

Remote Firewalla Red: LAN 192.168.99.1 / Overlay 192.168.200.1 / DHCP Mode

I have the Blue+ set up as the Site-To-Site VPN Server and I can connect from the Red just fine when I assign clients to the VPN. However, I have one HUGE issue that I can't figure out. 

I have a Polycom SIP Phone that is able to register to the SIP Server, but the calls are failing to go through. I have struggled getting SIP to work over SNAT on the Watchguard in the past and the only way it has worked is through the BOVPN Site-To-Site in Watchguard. 

I feel like I am on the cusp of this working as the VOIP Phone is a deal breaker if I can't get it working. 

Any ideas on what might be causing the calls to fail? 

0

• 

  Firewalla

  • January 04, 2022 21:18

  SIP may require NAT Passthrough settings to work correctly. If you are using the Gold. it is under networks->Nat settings->NAT Passthrough

  0

  Comment actions Permalink
• 

  Matthew S. Webb Jr.

  • January 05, 2022 01:39

  I have a Blue+ sitting in Limited Mode behind my main firewall in the office and then a Red behind my test router at home in DCHP mode. What would you suggest with my configuration?

  0

  Comment actions Permalink

Please sign in to leave a comment.