I am pretty new to asterisk so my questions might seem a bit trivial to you.
We have a sip trunk to our sip provider.
sip show peers says this trunk is unreachable
sip show registry says it is registered
The console generates the following output every minute:
tcptls.c:446 ast_tcptls_client_start: Unable to connect SIP socket to (IP Adress of Provider):5060: Connection timed out
My provider says that they see a correct login and that this message is ok. According to them it has something to do with encryption and they say that it should be possible to make calls.
So the questions are:
What does it mean when a sip trunk is unreachable but registered?
Is it possible to make a call over this trunk?
There seems to be a misconfiguration in the transport protocol: For any reason the Asterisk likes to communicate with TCP/TLS which is really unusual for a trunk-connection to a VOIP-provider. Normally transport should be udp (as it’s the de facto standard). Did Your VOIP-provider explicitly offer You TCP/TLS as transport?
The actual error will prevent asterisk from successfull placing or receiving calls on the trunk.
There should be something in the general sip-configuration (even if this should be ok on a fresh install).
Just post the output of asterisk -rx "sip show peer ". (Not the complete output is needed, interesting are the lines
[ul]Addr->IP
Prim.Transp.
Allowed.Trsp[/ul]
That’s not the information I told You to post, we need
instead of sip show peers
Pls. provide us with this information.
However, we already know, that TCP is enabled and transport is probably setted to tcp. This still gives us no reason, why asterisk tries to connect in TLS-mode.
OK, we found out that the firwall plays a role in this. We changed a few settings on the firewall (Fortigate 100D) and now the error message does not appear anymore. However the sip trunk is still unreachable.