Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 4 subscribers
  • Views 10788 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM & SIP, no go

Mohamed Hassan

Hi Everyone,

I tried everything to use my SIP server with Sophos UTM but Sophos doesn't like it.

So I've a SIP server which I confirmed is working with another home router receiving calls and making calls out but when I switch to Sophos UTM it blocks it.

What I tried:

Used SIP support within the UTM: have put my SIP VOIP provider IP under SIP server network and my network under SIP client network. This did not work. I even tried Any network to Any network with Expectation Any and SIP server won't work.

I tried NATing, I port forwarded all TCP/UDP ports to my internal SIP and this did not work.

I turned off everything firewall feature, such as: intrusion detection, port scan, application control. 

Set firewall Any to Any.

I can't get my SIP server to work behind Sophos. Can someone please help me if anyone knows the fix???

 

Cheers

Mo



This thread was automatically locked due to age.
Parents
  • 0

    First question in this scenario is allways: What requirements does your SIP Provider have? Usually, SIP-Providers provide a sheet with ports and ip addresses to who communication should be possible. If you have this information, then you can start checking live log viewer whether (only if you enabled log on firewall policys) to check, whether these packets are arriving your UTM or not, and how it handles these Packets.

  • 0 in reply to HuberChristian

    Hi Huber thanks for your reply. I just made another test. Basically I have home UTM installed on Hyper-V server for myself. The test I did is I have a Sophos UTM SG 105 for a client I'm going to set it up for them. I've used it with the SIP support with same settings and worked right a way.

    At this is stage I'm fine because it's not my SIP server it's for the same client I was just testing everything before I deploy the SIP server and the Sophos SG 105 and it happens that I tested with my home Sophos UTM VM.

    Would you have any idea why it works for a physical box but not a virtual box considering it's same ISP, settings, network? Just carious to know now.

     

     

    PS: When using my UTM and when I allowed SIP ports in the firewall and set nat rules for the SIP internal server I couldn't find any SIP ports blocked from the firewall live log but when I used the SIP support feature, SIP ports were getting blocked.

  • 0 in reply to Mohamed Hassan

    Mo, what happens when you do #1 in Rulz?

    Cheers - Bob

Reply Children
  • 0 in reply to BAlfson

    I did not check any logs other than firewall reason is I turned off all firewall, intrusion prevention, application control, deep scan and every protection item exists in the UTM and still doesn't help where all of these items where enabled on the other Sophos SG 105 box I have but I did not have any issues using my SIP server.

    The only difference between the 2 UTMs is one is home software UTM running on a VM where the other is hardware UTM. Why it works on the hardware not the software one?

  • 0 in reply to Mohamed Hassan

    If you're confidant that you're not being done in by Anti-DoS UDP Flooding, then there must be a routing problem between your VMs.

    Cheers - Bob