08 Oct Sangoma Zulu 3 and NAT on pfSense firewall
General NAT settings
1:1 NAT (1 to 1 NAT)
It looks like media stream on Zulu 3 require a static port setting in order to work correctly. However be aware that there may be security risks associated with this setting:
“By default, pfSense rewrites the source port on all outgoing packets. Many operating systems do a poor job of source port randomization, if they do it at all. This makes IP spoofing easier, and makes it possible to fingerprint hosts behind the firewall from their outbound traffic. Rewriting the source port eliminates these potential (but unlikely) security vulnerabilities. Source port randomization also allows NAT to overload connections properly when multiple local clients need to reach the same remote server IP address and port simultaneously.”
These are some of the settings we made to resolve our no audio connectivity issues with Zulu 3 and pfSense firewall. We hope this helps.
If this isn’t your issue and you still have No/One Way Audio, you can find more help here: https://wiki.freepbx.org/pages/viewpage.action?pageId=110003971
If you would like to hire us for your project or you need help with Zulu or pfSense please contact us.