I’m hoping someone might be able to give me a few pointers on a FreePBX 10/Juniper SSG140 combo. I inherited this firewall and an old TrixBox CE setup. As active development and updates to Trixbox stopped eons ago I built a FreePBX VM and attempted to cut over to it yesterday evening but had to revert to the Trixbox after I couldn’t get it fully working. I could place outbound calls without issue. I could place one or two inbound calls without issue as well, however, after either a few calls or a few minutes I could no longer place inbound calls. This would be the case until asterisk was restarted.
I’m guessing I’m missing something in my firewall config. When I try an inbound call and it doesn’t work I see nothing happening in the asterisk cli with the verbosity set very high.
The SSG140 untrust interface is set to route. I created a MIP and the FreePBX has its own IP. There is a policy from untrust to trust for that MIP with the appropriate ports allowed. Application (ALG) is set to None and NAT is NOT checked for source or destination translation.
Do I turn NAT on in the policy src, dest, or both?) and what should the FreePBX NAT settings be?