emnoc ... no offense intended, but that is exactly an example of what I would call a pretty much useless response. No definitive " here is how you do it" instructions, just a bunch of mumbo jumbo that exists in a dozen other areas in this forum. I love how everyone points to these so-called great examples in the KB on the fortinet site, yet not one of you can provide a link, an article number, nothing. That KB is a piece of crap, worst I' ve ever come across in my life. I found exactly ONE article that discusses SIP and it appears to have been created by a child that barely understands English.
red.adair:
- currently use 4.0, MR1 patch 3
- do have a FW rule allowing 5060/UDP outbound from DMZ to WAN1, PBXtra lives in DMZ
- do have a VIP rule binding ext:5060 to dmz:5060 with associated ext->dmz rule
- I do have the SIP-ALG protection profile created and bound to all rules
- NOT using STUN
I' m very familiar with SIP. The amazing thing is, when I switch to testing with another SIP trunk provider, everything magically works perfectly. Switch back to bandwidth.com, nothing works. Yet they claim everything is setup perfect on their end. Quite frankly I think they are full of crap.