Hello,
First I want to thank everyone on here as I have gotten tons of needed by reading these posts, but I could not find an answer to my current problems.
I am not able to get any IP phone to connect to my PBX via the local IP. For testing I opened port to public IP (I am aware of the security issues, just for testing it was opened, and only temp).
Here is what I have:
FreePBX(distro) - PBX Firmware: 1.812.210.58-1
running on an older dell
Cisco SPA502G
Cisco 7970G
Basic Netgear Router
MS SBS 2011 running domain services
SBS handles DHCP - I did add the tftp into the DHCP Scope.
when I power the SPA502G it pulls the DHCP. tftp and provisions all looks good - but asterisk cli never shows an attempt to connect.
so for troubleshooting
i set the 502g to static IP - unit does not pull tftp as expected - I get the same result that cli never shows the connection - I move the 502g so it uses the public ip of the pbx and it connects and registers fine.
next step in troubleshooting -
i changed the config so the phone uses public ip for pbx and moved it back to dhcp - phone provisions fine - cli reports the connection attempted and wrong password
So i chnaged the password - same result
the 7970g has almost the same issue with the exception i cannot get it to register on the private or public ip
now - tested with a mobile SIP app on my phone same result will not connect to private ip but if i connect my phone to our vpn it will connect to the private ip
Where is the PBX? In a DMZ? Check the IP Tables on the PBX. Also check Fail2Ban. If it detects too many failed attempts it will blacklist your device. If that happens, restart it from within the GUI. Send more info on how your network is setup. (Sanitize it for security purposes)
the PBX is local along with all phones and the SBS box.
network setup(everything is in the same room)
neatgear router - 10.10.2.1
unmanaged Cisco SBA switch
sbs box - 10.10.2.10 (hands out DHCP scope 10.10.2.200-10.10.2.255)
pbx - 10.10.2.50
502g - pulls dhcp ip 10.10.2.213
7970 - pulls 10.10.2.216
both phones pull proper info as the get the tftp info
*update - i inserted the port number into the ip string on the 502g and it now connects properly via local ip
the 7970 still never shows it even makes it to the pbx it just sits at “registering” on the phone - i tried putting the port in the ip string on the 7970 also - no luck
i also thought it might be a fail2ban issue so i shut it down for testing i also attached a dump of iptables
i stopped iptables - and retried same result cli never shows an attempt to connect from the 7970
i have heard that some firmware on the 7970 have a problem i currently have SIP70.9-2-1S running on it