Good afternoonI tell you my scenario
We have a gvc3200 cn firmware 1.0.3.36 in the city A and we have another gvc3200 with a Firware 1.0.3.24 in the city B. The two offices communicate through a VPN. In A city we have a pbx umc6102 and in B city we have a pbx elastix. In both pbx we have sip extensions and a sip trunk to communicate both pbx, also both pbx are allowed the use of video and audio codecs so that the gvc equipment can transmit audio and video. In A we have a firewall router fortigate 90D and in B We have a zywall usg 20. The problem is the following:
Audio Sip call: From A to B and vice versa you can successfully transmit audio Ip call: From A to B and vice versa you can successfully transmit audio
Video
Sip call: From A to B you can not show video is more nor does it sound like you're calling the other equipment. From B to A you get both audio and video
Ip call: From A to B you can not show video is more nor does it sound as if you were calling the other equipmente. From B to A, the screen goes out that if we want audio or video or reject, and the option does not work neither audio nor video, only the option to reject works.
Both gvc computers are registered in their respective PBX. We also did a test to change the protcoloc sip to H323 and successfully left either from A to B and vice versa.
We do not know what more tests to do, if only audio works well from there video for nothing.
I attached wiresshark trace
We wait your answer Beforehand Thank you
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Usually if I see problems with SIP I would disable SIP-Helpers and SIP-ALG. https://www.3cx.com/blog/docs/disable-sip-alg-on-fortigate/
It might be worth a shot. Also I dont see the wireshark trace attached.
http://docs.fortinet.com/uploaded/files/2813/fortigate-sip-54.pdf
The following PDF has wealth of information regarding VOIP and the FGT.
I updated my post in order to attach wireshark trace. You need to change extension .txt to .rar. Inside rar there are my wireshark trace can you donwload and see that?. Meanwhile I will read yours anwsers
There is another things. IN firewall system---featrues selecte --additional features, VOIP is disiable. That means that SIP ALG and Sip helpers are disable?
Another thing that I saw if sip/sdp packet(1600) from A to B is much larger than sip/sdp packet from B to A (700) each time that I capture packets. Is that a problem?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1632 | |
1063 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.