Something is very strange here: I assume that listenport is a ‘secret’ port other than 5060; otherwise you would not have redacted it. But to send calls to that port, you would also need a ‘port=listenport’ entry in the outgoing config, unless the provider somehow uses port 5060 for calls but another port for registration. I’ve never heard of that.
Yes, OK, it is 5060. . . BUT
To avoid admonishment from Dicko I omitted that part.
We have the firewall configured to allow only the provider to use that port.
I am sorry for taking this off topic but this was extremely funny to me. @dicko got everyone here scared to u̶s̶e̶ admit to using UDP 5060 for their SIP signaling.
Username: NPANXXXXXX
Secret: (as supplied by provider)
SIP Server: sip.providername.com
Contact User: NPANXXXXXX
From Domain: sip.providername.com (may not be needed but shouldn’t hurt)
From User: NPANXXXXXX (unless provider allows sending other caller IDs in From)