SIP Trunk and Routing Question

dear community,

i have the following problem:

now i get from a SIP-TRUNK provider 40 channels to my primary ip-address.
all traffic must go to the provider ip. all incoming goes over our pirmary ip-address.

so now i have 2 customers (outside from our datacenter) i want install and use freepbx,
and want connect to the sip-trunk via our primary ip-address that we can allow the static ipaddress
from the customer, to use the sip trunk.

now my question:
how i can solve this?

my possible solution:
customer -> openVPN (or PPTP) -> primary-ipaddress (our datacenter) -> our sip trunk provider.

is that a possible solution? or can i do this via direct routing?
that i only must allow access from static ip from customer, but how i can route this?

i use pfSense, zyxel and cisco firewalls.

thank you very much.

many greets

Set up your Integrated Firewall and Adaptive Firewall to manage your incoming (customer) connections, and white-list your ITSP.

If your customers have static IP addresses, you can white-list them and not even mess with the adaptive firewall.

Couldn’t be simpler.

hello cynjut,

thank you for your reply. but how i can do that exactly? i have on my datacenter and on my customers networks firewalls installed.

have tried this: directly on my datacenter i have installed on this master-ip a freepbx. all working fine.
but i need the freepbx’s on my customer sides.

so i have created a simply graphic (ip-adresses only for screendemo):

so now, what i should setup in my freepbx on customer for registration? if i put in the remote host the sip trunk provider,
thats not working because our sip trink provider only accepts requests from my data center ip.

can you explain me exactlier what i have do to?

routing the customers firewall via PPTP to my datacenter firewall?

its not exactly clear for me.

thank you very much.

Hello,

  1. Setup a SIP trunk between your PBXs and route your customer’s traffic through your PBX.

  2. Regarding the network configuration:
    The easiest solution is to work directly through the Internet with allowed ip addresses configured in your firewalls.
    The secured solution is to open a tunnel (PPTP/L2TP with IPSEC) to your PBX.

  3. If you prefer the secured network solution, please add your customer’s lan to your NAT sip settings of your PBX and vice versa.

Thank you,

Daniel Friedman
Trixton LTD.

Hello danielf,

thank you, but how i can do that?

i have on both locations (customer + our datacenter) pfSense working.

what i should setup in mypbx? the ip-address of the SIP-provider,
or the ip-address of my datacenter?

how i can route that correctly? any examples?

thank you

Hello,

You need to setup a SIP trunk between your customer’s pbx and your pbx.

If you need to open rules (with a VPN tunnel) or ports and static nat rules (without a VPN tunnel), you should open these ports:

for SIP open 5060 udp
for RTP open 10000-20000 udp

Thank you,

Daniel Friedman
Trixton LTD.

hello and thank you for your reply.

i dont check this currently.

in only want to have one pbx. this pbx is the pbx for my customer.
in my datacenter i dont have any pbx, … need i a pbx in my datacenter?

want only have e.g. 3 pbx for 3 customers in internet, they should able to connect directly to the sip provider,
without i have a pbx in my datacenter… is this possible? or have i a big fallacy ?

sorry for that.

thank you very much for your help.

many greets

Hello,

If your SIP provider supports connections more than one ip (3 ip in your case), It is possible to connect
your customers directly to your SIP provider.

If not, It would be easier for you to manage if you will install another pbx in your datacenter to manage your incoming and outgoing connections to your SIP provider.

Thank you,

Daniel Friedman
Trixton LTD.

hello,

thank you for your answer.

that means:
i must setup a pbx on my datacenter where my customers connect to the my sip-master-trunk?

do you have any tutorials how i can do this setup?

currently i have worked so:
i get sip provider credentials (hostname, user, password and phonenumber).
i have used to connect directly from my customers freepbx.

but now, my new provider only routes all traffic to my datacenter ip-address (i dont get any credentials for a sip account). he means alll channels was directly forwarded to our datacenter)…

and now i should setup my own pbx server, for my customers they have an pbx in their local networks too?
how i can understand that?

thank you very much.

many greets

Hello,

Here is a small diagram to explain:

SIP Provider =====> Main PBX (Data Center) <=====>Customer 1
                                           <=====>Customer 2
                                           <=====>Customer 3

Thank you,

Daniel Friedman
Trixton LTD.

Hello,

thank you. now i have called with our provider:
we must before setup a automatic exchange that we can use a asterisk for connecting to.

do you have experience with that?

thank you

Hello,

Yes, I have an experience with that.

Thank you,

Daniel Friedman
Trixton LTD.

hello,

so now i know what i need.

i have googled it, this is what i need on my datacenter:


or
http://www.voip-info.org/wiki/view/MySIPSwitch

Do you know which is the best one with billing support for SIP accounts (external customer pbx)?

Thank you very much.

Hello,

If you want to stay in the open source you can use the a2billing system.

Thank you,

Daniel Friedman
Trixton LTD.