Port 5060 is blocked?
Ally Member
Hi
I set a rule in my ATP200 to allow VoIP Traffic from WAN to the IP Pbx.
When I look into the Logfile I see → Wan IP Phone to WAN IP Router : 5060 ACCESS BLOCK.
I dont know why? I the rule say I allow the traffic?!
Thanks
Accepted Solution
-
Disable ALG SIP and try that?
If the block is inbound you might need a NAT rule to forward this port?
When you do get it working test again if ALG SIP is a problem or not.
1
Guru Member
All Replies
-
Does it cause any problem?
do you have ALG SIP enabled?
0 -
What rule did you set? If the message said "match default rule, drop", this means you don't have any rule to allow this traffic.
Back to your scenario. Due to the VoIP application, we recommend enabling SIP ALG function.
Please reference our Handbook P.811, topic How to Manage Voice Traffic.
Zyxel Melen0 -
Sorry I am damn pissed because I get alway "WAN IP":5060 ACCESS BLOCK
I have no idea WHAT cause that any more. Can someone say what I should add for a Policy in Policy control?
Due to the VoIP application, we recommend enabling SIP ALG function.
I do before.
😤 Sorry it drive me insane.
0 -
From some other post way back this happened to someone else and I don't think it caused a problem so are you having a problem?
If ALG SIP is enabled it may override Policy control and will allow whats needed and block what not.
0 -
so are you having a problem?
I get always "WAN IP":5060 ACCESS BLOCK
Yes it is activated. I dont know why it is so difficult for Zyxel to create an better logfile who say what is causing the problem. For Security there are a lot of thinks build into the Router who MAYBE interfear to.
0 -
Maybe its blocked because its a port scan looking to get into your device that you don't want and the USG is blocking it?
So I say again are you having a problem in that you can't call out or someone call in?
0 -
I cant register with my VoIP Server because the block the Port.
0 -
Disable ALG SIP and try that?
If the block is inbound you might need a NAT rule to forward this port?
When you do get it working test again if ALG SIP is a problem or not.
1 -
It seem to work now partly. The only "problem" is I can not select as "Source" the Fix Wan IP.
When it come from the other IP the should ignore the Data.
Now I limit the Source only to my Country who is good for now.
It seem the NAT was a GOOD IDEA and was not mention in the Zyxel PDF. 🤦
Now I can work with the Bandwidth thing its an easy one.0
Categories
- All Categories
- 439 Beta Program
- 2.8K Nebula
- 199 Nebula Ideas
- 125 Nebula Status and Incidents
- 6.3K Security
- 488 USG FLEX H Series
- 322 Security Ideas
- 1.6K Switch
- 83 Switch Ideas
- 1.3K Wireless
- 46 Wireless Ideas
- 6.8K Consumer Product
- 284 Service & License
- 455 News and Release
- 89 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 95 Security Highlight
