SIP Phone/Wireless Cafe/NAT/NATCallManger/Asterisk/SIP Phone

coolboarderguy · February 14, 2006, 9:05am

Hi All,

am new here. Have been given a small project(study purposes for now), and am stumped. Scenario below,

Phone = SIP
Access Point = wireless cafe etc(no control over routers/nat)
CallManager = 3.0(behind NAT)
Phone = SIP

How do these two talk? How does one get around this scenario? I know that if it were a scenario where I could control everything, I could use an Asterisk/NAT/Proxy box at each point. Anyone met this before and solved it? I am still rather new to all this, and it is also an opportunity for me to learn more about VoIP/SIP/Asterisk etc. I’ve visited the voip.org site, and read the following,

voip-info.org/wiki/view/NAT+and+VOIP

sipcenter.com/sip.nsf/html/W … versal.pdf

but don’t think they relate specifically to my scenario. Any pointers?

coolboarderguy · February 16, 2006, 7:54am

Hi All,

trade secret, perhaps? Too vague a question? Need more info on the scenario?

arne22 · February 16, 2006, 12:00pm

I agree, some more info is required.

By the way what is CallManager 3.0 (Cisco ?)
(And why not use Asterisk ?)

By the way a sip (or iax) unit on a web cafe can talk to a Asterisk server via wired or wireless connections, have made a few tests on that.

Firewall traversal troug firewalls that normally will block for sip telephony also possible.

Pleas trade / post more about secrets

coolboarderguy · February 17, 2006, 11:33am

[quote=“arne22”]I agree, some more info is required.

By the way what is CallManager 3.0 (Cisco ?)
(And why not use Asterisk ?)[/quote]

will do, if at all possible. Yes, CiscoCallManager3.4, but, would like to do away with it, if possible.

[quote]By the way a sip (or iax) unit on a web cafe can talk to a Asterisk server via wired or wireless connections, have made a few tests on that.

Firewall traversal troug firewalls that normally will block for sip telephony also possible.[/quote]

How did you get the sip to get past the NAT, if at a cafe, where you have no control of the cafe’s system(s)? Doesn’t sip data use random ports?

sure, as I learn more, I’ll share them with anyone that needs them, as this is OpenSource world, right?

arne22 · February 20, 2006, 7:00pm

This is OpenSource world, right?

RIGHT

Sip trough firewalls and at web cafees … dont know for sure how it works but, normally it works (but not allways.).

I have tested with my asterisk server behind a nat router and also the client on a web cafe, also behind a nat router, that means nat routers in both ends and forwarding only at the server end.

I used a xten client on a laptop and also as installed on the web cafees ordinary pc’s. As long as the web cafe does not block the outgoing ports for the udp packets it normally will work.

(How I believe it works … the xten client is sending regularly keep alive requests to the server, so that the firewall/nat router at the client end consider it to be a lan to wan trafic all the time.)

One thing I also have experienced is that sip telephony is a bit sensitive about loss of packets. Testing this using a wireless connection on my laptop I could experinece that ordinary web surfing using tcp worked all the time in all possitions of the building, while sip telephony only worked in a part of the building, that part that had the best transmission signal.

I have also tested with iax clients, mostly idefisk. This gives a more reliable nat traversal than the xten sip client, and it is less dependent on the qualitu of the signal. It allmost allways works as long as the outgouing firewall does not block for the outgoing udp packets of the iax protocoll. On the other hand I think the xten has a bether sound quality than the xten (when it works).

As a experiment for traversing any firewall I tried to set up the asterisk server with a openvpn server, then to tunnel the sip or the iax packets trough a tcp port 443 vpn tunnel.

This also worked, also at places like public liberaries and places like that only allowing trafic out at tcp 443 and port 80. Experimented with tunneling trough port 80 as well. This also worked.

Problem: When you are tynneling the iax or the sip udp packets trough a tcp based vpn channel you very easily get som distortion of the sound quality. Dont know why, but my theory is that there might be some scheduling problem while passing the udp packets in and out of the tcp tunnlel.

By the way, I do not use the openvpn solution any more. (It is not that difficult to find a web cafe that do not block outgoing udp trafic.)

I then also use a call back solution, I only call a number to my asterisk box and I got called back. I also have a web based solution, I click on a web link, and then I got the dial tone anywehere.

arne22 · February 22, 2006, 4:58pm

And … some more secrets … ??