I’ve recently set up a new FreePBX server, (latest FreePBX distro, Asterisk 11/64 bit). It’s all works just great, incoming/outgoing, IVR, recording everything. Until I get a –
[2017-06-19 09:12:38] NOTICE chan_sip.c: Peer ‘sip-out’ is now UNREACHABLE! Last qualify: 24
[2017-06-19 09:12:38] NOTICE chan_sip.c: Peer ‘sip-in’ is now UNREACHABLE! Last qualify: 24
in the full log and then I’m cut off from my SIP trunk provider. Asterisk then just sits there and doesn’t reconnect, and everyone gets “All circuits are busy” messages. Then the shouting and screaming starts. This can be from every a couple of days down to 10 mins.
I’ve been tearing my hair out for the last days, reading everything regarding having Asterisk/FreePBX connected via pfSense. I already had NAT rules in place to forward incoming requests from my SIP trunk provider through the firewall/NAT to the FreePBX VM.
I’ve since tried 1:1 NAT, didn’t seem to help, and then an Outbound NAT rule as recommended in the pfSense docs. This doesn’t seem to help either.
I’ve added ‘keepalive=30’ in the trunk settings, registertimeout and registerattempts, no improvement either.
I’ve tried using SIPROXD on pfSense, but the outbound traffic didn’t seem to go through the proxy. And the docs seem to infer that I shouldn’t be using it anyway.
I’ve spoken to the SIP Provider and they tell me I’ve jumped ports, instead of connecting to 5060 at their end, I was connecting to 38000ish. An ‘aportal restart’ seems to fix the issue, but of course that kills all active calls.
I’m guessing this is NAT time out issue, but I’m damned if I can find an answer, but I can’t be the only person with a SIP provider who uses IP based authentication (if that’s the right term where there is no username/password), who’s using FreePBX behind pfSense.
Oddly, I also have another trunk that I used for testing, it’s a traditional SIP setup with a username/password, and has no firewall/NAT rules in pfSense, but just works, this hasn’t dropped out that I’ve noticed.
Can anyone help? I’m at my wits end and getting a lot of heat from the management…