From owner-freebsd-questions@FreeBSD.ORG Sat Dec 2 21:34:02 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 262D916A412 for ; Sat, 2 Dec 2006 21:34:02 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout5.cac.washington.edu (mxout5.cac.washington.edu [140.142.32.135]) by mx1.FreeBSD.org (Postfix) with ESMTP id D95D343CB6 for ; Sat, 2 Dec 2006 21:33:38 +0000 (GMT) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.33.7]) by mxout5.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW06.09) with ESMTP id kB2LXxtT017908 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Sat, 2 Dec 2006 13:34:00 -0800 X-Auth-Received: from [192.168.0.101] (dsl254-013-145.sea1.dsl.speakeasy.net [216.254.13.145]) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW06.09) with ESMTP id kB2LXxgu031939 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Sat, 2 Dec 2006 13:33:59 -0800 Message-ID: <4571F147.1000807@u.washington.edu> Date: Sat, 02 Dec 2006 13:33:59 -0800 From: Garrett Cooper User-Agent: Thunderbird 1.5.0.8 (X11/20061116) MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <45718A77.3090107@androme.com> <45718C19.2000809@joeholden.co.uk> <200612021034.45192.derrick@uniquestrength.net> <4571A63D.1020605@androme.com> In-Reply-To: <4571A63D.1020605@androme.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-PMX-Version: 5.2.2.285561, Antispam-Engine: 2.5.0.283055, Antispam-Data: 2006.12.2.131932 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='__CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT 0' Subject: Re: VoIP behind NAT and FreeBSD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Dec 2006 21:34:02 -0000 Kurt Dethier wrote: > Derrick Edwards wrote: >> On Saturday 02 December 2006 09:22, Joe Holden wrote: >>> Kurt Dethier wrote: >>>> STUN will only work if you have the correct NAT implementation on >>>> your gateway. If you are using pf, you get what the STUN RFC calls >>>> a symmetric NAT. STUN will not help you in such an implementation. >>>> I'm not sure how the other NAT solutions on FreeBSD are implemented. >>>> >>>> If you need a solution for a symmetric NAT, you need something that >>>> understands the signaling protocol and can add fw/nat rules on demand >>>> on your gateway, or a media proxy (like TURN). >>>> >>>> Kurt > >> >>> It is entirely possible to use voip behnd symmetric nat, but it also >>> entirely depends on the setup, some more details will help. >>> >> Hi, I am not sure of your setup either, but I have Vongae working >> behind a FreeBSD Firewall/Router using PF with NAT. > > Hi all, > It is very possible to use VOIP behind a symmetric NAT, but STUN is not > going to be any help. Depending on the setup and clients I have > implemented a number of solutions over the past years. > Unfortunately I haven't found a single solutions that always works. > > Kurt Forgive me if I'm not understanding the issue properly, but don't you have port-forwarding setup on the FreeBSD box for the machine that you are trying to use VoIP with? It seems like the problem would *sort* or be that simple to solve, unless the VoIP setup uses a P2P type configuration where it picks multiple ports for listening and transferring data. Maybe it's just my misunderstanding of VoIP.. -Garrett