This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Forwarding MAC of internal device to WAN?

Hi,

I've just setup ASG7, latest stable and I have some problems making my VoIP telephone to work. Anything else work, just not this.

The provider says that in order for the phone to work the MAC address of the analog to IP telephone adapter needs to be published on the external WAN interface, and that all traffic needs to be allowed in/out to this adapter. The adapter is a Tecom GW1000ST.

My setup have 3 NICs - LAN, DMZ and WAN. The telephone adapter is on the DMZ NIC where anything is allowed in/out from anywhere. The DMZ NIC is also serving DHCP to the DMZ range.

The WAN is an PPPoE connection to my ISP which is Telenor Norway

Anyone know how / if it is possible to publish MAC address of an internal device to the WAN interface with ASG7?

This thread was automatically locked due to age.

Parents

0 Sungrazer over 16 years ago

I figured it out. The problem was compound. The DMZ didn't give out DHCP address to the telephone adapter, and the way to do it as presented by the telco was wrong.

I managed to reset the telephone adapter, put it on the internal lan and got an ip address. I then just allowed everything to and from that host. Telephone now works like a charm. [:D]

Btw, I guess the hackers is going to have a field day with that device...
Cancel
Vote Up 0 Vote Down

Cancel
0 BarryG over 16 years ago in reply to Sungrazer

Usually you can find docs for such things which specify which ports are needed.
In my case (AT&T with Centillium VOIP adapter), I was also able to lock it down to AT&T's network, and only on the SIP port(s).

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 Sungrazer over 16 years ago in reply to BarryG

Yeah, I've turned on logging and I am going to see what ports going in out and to what networks over time. I guess I can also talk with the phonecompany, but in my experience I am only getting garbage information.

Thanks for your reply.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Sungrazer over 16 years ago in reply to BarryG

Yeah, I've turned on logging and I am going to see what ports going in out and to what networks over time. I guess I can also talk with the phonecompany, but in my experience I am only getting garbage information.

Thanks for your reply.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Sungrazer over 16 years ago in reply to Sungrazer

Ah, well - I onlined my vmserver farm and hit the 10 ip barrier, and they are not even using internet, or hitting the gw. Turned on my laptop and was promptly denied access.

So long astaro, it was a nice aquintance since 2003, but now I am out.
Cancel
Vote Up 0 Vote Down

Cancel
0 BarryG over 16 years ago in reply to Sungrazer

Did you see the announcements about free 25-IP licenses for current beta testers?

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 Sungrazer over 16 years ago in reply to BarryG

No, I didn't - will I have license for 25 ips after the beta period is over? I am currently looking at EFW, Untangle or pfsense in no particular order of preference.

I'll have a look at the beta program as well.
Cancel
Vote Up 0 Vote Down

Cancel