My office just migrated our freePBX service over to a new virtual server on VULTR. Now, when I make calls out of our phones they hang up after thirty seconds. When I call into the office phones, the call lasts as long as I want.
After digging around the forums, I have already made sure to update the NAT settings. Because we are using a virtual server, I made sure that it’s not hitting a weird firewall issue.
Everything was working fine before the switch, so all the internal settings of FreePBX should still work (except for the NAT local and external address which I changed.)
30 seconds sounds like the ACK to the 200 OK is not getting sent. ssh into the server, run sngrep
, initiate the call and see if you have a handful of 200 OK getting repeatedly sent without an ACK the other way
The server doesn’t have ssh login info, so I have no way of getting in. Is there something else I could try?
You are going to need CLI access to troubleshoot this
If the SSH credentials shown in the Vultr portal don’t work, use the Vultr console to log in. If that also doesn’t work, recover by booting into a root shell, just like any Linux system.
The missing ACK symptom is normally a secondary failure from the OPs first guess, of faulty NAT configuration.
Retransmissions leading to a timeout will show in the Asterisk full log, which is, I believe, accessible through the GUI.
Are you using the firewall at Vultr for the system or are you relying on the FreePBX Firewall for things? Do internal calls have this problem, i.e. 100 calls 101 and everything is fine?
Yes yes. I probably should have worded it better that it was a NAT issue that can be verified (or that’s how I verify it at least, I stand to be corrected) by observing repeated 200s without ACK. Contact Header in Signaling and/or Connection (c) in Payload
Go to Settings > Asterisk SIP Settings > Under NAT settings click on “Detect Network Settings”, Apply and try again.
You mentioned something about everything working before the switch. What were you doing before? Was it a server on your LAN? Do you by some chance have SIP nat disabled in Settings > Advanced Settings > Device Settings > SIP nat ?
Do you have any VPNs or subnets setup? Did you check if SIP ALG is disabled on the router? Any other relevant settings on the router? Like trying to forward the Vultr server IP or putting devices in the DMZ? You should not be doing any of that stuff or anything else that you may have been doing with an internal server.
The server is in the cloud and has a public IP. There’s no NAT at the server side therefore things like the External Media address or the Local Network don’t apply.
We went from a vultr server to a different vultr server with the same settings. No firewall.
Do extension to extension calls work without issue?