From owner-freebsd-net@FreeBSD.ORG Wed Sep 8 21:41:22 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5E07C16A4CE for ; Wed, 8 Sep 2004 21:41:22 +0000 (GMT) Received: from out002.email.savvis.net (out002.apptix.savvis.net [216.91.32.45]) by mx1.FreeBSD.org (Postfix) with ESMTP id 07C4443D45 for ; Wed, 8 Sep 2004 21:41:22 +0000 (GMT) (envelope-from Maksim.Yevmenkin@savvis.net) Received: from s228130hz1ew03.apptix-01.savvis.net ([10.146.4.28]) by out002.email.savvis.net with Microsoft SMTPSVC(6.0.3790.0); Wed, 8 Sep 2004 16:41:21 -0500 Received: from [10.254.186.111] ([66.35.239.94]) by s228130hz1ew03.apptix-01.savvis.net with Microsoft SMTPSVC(6.0.3790.0); Wed, 8 Sep 2004 16:41:20 -0500 Message-ID: <413F7C7F.2070603@savvis.net> Date: Wed, 08 Sep 2004 14:41:19 -0700 From: Maksim Yevmenkin User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.2) Gecko/20040822 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Gary Corcoran References: <413F6BBE.1050202@forrie.com> <413F745F.3020306@savvis.net> <413F79DC.1010204@comcast.net> In-Reply-To: <413F79DC.1010204@comcast.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 08 Sep 2004 21:41:20.0133 (UTC) FILETIME=[94040B50:01C495EC] cc: freebsd-net@freebsd.org cc: Forrest Aldrich Subject: Re: VoIP and IPFW X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Sep 2004 21:41:22 -0000 Gary Corcoran wrote: > Maksim Yevmenkin wrote: > >> Hello, >> >>> I'm considering testing the Vonage service, with my FreeBSD-4.10 >>> system (maybe 5 or 6). I wonder if anyone here has a configuration >>> they can share, or if there are any pages out there that detail the >>> proper (and secure) setup. >> >> >> >> i'm using lingo (www.lingo.com) - very similar to vonage. i use >> freebsd 4.10 as my firewall/nat/wireless access point/etc. the lingo >> box in behind freebsd box. it gets its ip (local) via dhcp and then >> talks to the lingo servers (via nat). it seems both providers are >> using sip, so i did not have to open anything on my nat/firewall, >> because the lingo box initiates the connection from the inside. > > I can understand how you can do outgoing calls behind a NAT firewall, > because you initiate the connection. But can you receive *incoming* > calls? Or are you always "connected" to the VOIP provider, and thus > your firewall/reverse-nat is always open/setup? yes, the lingo box is 'always "connected"', so incoming calls work just fine. one more thing - i had to give ntp servers list in the dhcp response to the lingo box, otherwise caller id time was way off :) max