My dad has a SIP phone in his house. His house network (192.168.5/24) is behind a NAT gateway like most everyone I know. The asterisk server is also behind its own NAT gateway part of network 192.168.1/24.
Plan A
I originally had his SIP phone connect to the asterisk server through a port forward on the asterisk server gateway. This worked somewhat but had issues of voice quality stuttering and so forth. I suspected Time Warner was messing with the traffic but I wasn’t sure so, I tried Plan B.
Plan B
I got my dad’s gateway to VPN connect to the NAT gateway ahead of the asterisk server. This meant all of his traffic was being sent to the asterisk server’s network (192.168.1/24) before going out to the internet. This also meant that his SIP phone which still had a 192.168.5/24 address could directly talk to the 1.whatever network where the asterisk was. In this situation, everything worked beautifully. Audio quality was superb but we had the one big drawback that all of his bandwidth was now routed though the asterisk internet connection which slowed him down and was a drain on the asterisk internet. With this in mind, I attempted Plan C…
Plan C
We disabled the VPN client of his first router and then I had my dad buy another gateway router. I had him connect the WAN port of it to the LAN side (192.168.5/24) of the first router. I then had him setup the WAN side as being a PPTP connection to the asterisk gateway so it was a VPN client. I made this new router’s lan 192.168.15/24. I then had him plug in his SIP phone into the lan side of this new router. So, his new sip phone gets a 192.168.15/24 address and is able to contact the asterisk server at 192.168.1.14 since the 192.168.15.1 router is a member of the 192.168.1/24 network now. Technically, he’s behind one NAT router now - the new gateway router he just bought - just like he was behind a NAT router in Plan A. In this configuration, he registers successfully. I can call him and he can hear me just fine but I can’t hear him.
This is what Asterisk shows for his SIP channel:
Name/username Host Dyn Forcerport Comedia ACL Port Status Description
510/510 192.168.1.1 D Yes Yes A 1287 OK (95 ms)
Here are the settings I understand are relevent:
FreePBX Version 12.0.51
Dad’s Sip Settings
NAT Mode = Yes - (force_rport, comedia)
Port = 5060
Can Reinvite = No
Host = Dynamic
Qualigy = Yes
Dad’s Phone Settings
NAT Traversal = "STUN or “No but Keep-Alive” (either setting has the same result)
Here are two interesting lines asterisk shows me when the call between my extension (I’m on the asterisk server side with an IP address of 192.168.1.18)
0x7f7340033680 – Probation passed - setting RTP source address to 192.168.1.18:5004
0x7f734802d1d0 – Probation passed - setting RTP source address to 192.168.1.1:1238
Any help appreciated. Feel like I’m really close.