From owner-freebsd-net@FreeBSD.ORG  Wed Sep  8 21:20:14 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 32DD216A4CF
	for <freebsd-net@freebsd.org>; Wed,  8 Sep 2004 21:20:14 +0000 (GMT)
Received: from sccrmhc11.comcast.net (sccrmhc11.comcast.net [204.127.202.55])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A536543D1F
	for <freebsd-net@freebsd.org>; Wed,  8 Sep 2004 21:20:13 +0000 (GMT)
	(envelope-from garycor@comcast.net)
Received: from [10.56.78.111]
	(pcp09118143pcs.union01.nj.comcast.net[69.142.234.88])
	by comcast.net (sccrmhc11) with ESMTP
	id <200409082120120110020jfde>          (Authid: garycor);
	Wed, 8 Sep 2004 21:20:12 +0000
Message-ID: <413F79DC.1010204@comcast.net>
Date: Wed, 08 Sep 2004 17:30:04 -0400
From: Gary Corcoran <garycor@comcast.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
	rv:1.7) Gecko/20040616
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Maksim Yevmenkin <maksim.yevmenkin@savvis.net>
References: <413F6BBE.1050202@forrie.com> <413F745F.3020306@savvis.net>
In-Reply-To: <413F745F.3020306@savvis.net>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: freebsd-net@freebsd.org
cc: Forrest Aldrich <forrie@forrie.com>
Subject: Re: VoIP and IPFW
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Sep 2004 21:20:14 -0000

Maksim Yevmenkin wrote:

> Hello,
> 
>> I'm considering testing the Vonage service, with my FreeBSD-4.10
>> system (maybe 5 or 6). I wonder if anyone here has a configuration
>> they can share, or if there are any pages out there that detail the
>> proper (and secure) setup.
> 
> 
> i'm using lingo (www.lingo.com) - very similar to vonage. i use freebsd 
> 4.10 as my firewall/nat/wireless access point/etc. the lingo box in 
> behind freebsd box. it gets its ip (local) via dhcp and then talks to 
> the lingo servers (via nat). it seems both providers are using sip, so i 
> did not have to open anything on my nat/firewall, because the lingo box 
> initiates the connection from the inside.

I can understand how you can do outgoing calls behind a NAT firewall,
because you initiate the connection.  But can you receive *incoming*
calls?  Or are you always "connected" to the VOIP provider, and thus
your firewall/reverse-nat is always open/setup?

Thanks,
Gary