We received 19 separate support tickets over the past 24 hours for customers whose endpoints were no longer registered to their system. In many cases, they were extensions that were not part of the main office and were located at home / remote locations. Investigations found that the IPs had been added to the blocked list in the FreePBX Firewall. We were able to remove them from the blocked list and manually whitelist the IP, which allowed registration. However, responsive firewall was enabled for CHAN_SIP and these same endpoints have been successfully registering from dynamic IP addresses previously.
Affected systems are running 10.13.66-13 to 10.13.66-20 and are located in two of our datacenters.
All logs were searched for entries matching the IPs in question and all we could find were informational messages regarding Challenge Succesful and succesful registration messages.
As a short term solution, we’ve had to assign CHAN_SIP to allow registrations from anywhere in the External zone, as we have numerous clients with dynamic IPs and cannot risk any more incidents.
Has anyone else experienced recent issues with Responsive Firewall acting in this manner?