Good afternoon
ive been looking into an issue that we are experiencing for a while now.
first the information about the infrastructure we are dealing with at the moment.
we got around 200 Yealink T42U and T42S devices connected, this over around 30 different offices around Belgium.
The Yealink devices
Register over 5060/udp to our asterisk server
The Server Expires timer is 600 seconds
and the retry rate is 5
The Keep alive type is Default (UDP) and the interval is 15 seconds
Firewall Fortigate 40F V7.0.12
we got a firewall policy allowing all traffic from internal to our WAN IP.
SIP ALG deactivated and the sip session kernel-helper-based and our local ISP is Telenet connected in bridging to the fortigate(s).
The Asterisk is hosted on a Linux
NAME=“CentOS Linux”
VERSION=“7 (Core)”
ID=“centos”
ID_LIKE=“rhel fedora”
VERSION_ID=“7”
PRETTY_NAME=“CentOS Linux 7 (Core)”
CENTOS_MANTISBT_PROJECT=“CentOS-7”
The Asterisk version is Asterisk 16.15.0
The SIP config we push
type=friend
host=dynamic
qualify=1500
insecure=port
nat=force_rport,comedia
;directmedia=nonat
disallow=all
allow=ulaw
allow=gsm
allow=alaw
callcounter=yes
busylevel=4
limit=6
accountcode=1231
setvar=SPYGROUP=1231
setvar=_TRANSFER_CONTEXT=1231-transfer
setvar=__TRANSFER_CONTEXT=1231-transfer
context=1231-guest
language=fl
directmedia=no
;rpid_update=no
rpid_update=yes
sendrpid=pai
directmedia=yes
disallowed_methods=UPDATE
The problem:
all devices go unreachable for exactly 10 seconds
the interval of this happening is mostly 1 minute 3 seconds but sometimes can last up to 20 minutes
Jan 25 09:26:47 NOTICE Peer ‘1078-151303’ is now UNREACHABLE! Last qualify: 16
Jan 25 09:26:57 NOTICE Peer ‘1078-151303’ is now Reachable. (17ms / 1500ms)
and I see the following in sngrep
If I missed information, please let me know
If someone knows a fix it would be greatly appriciated
Thanks in advance
Gauthier