I’m not sure where to post this thread… I searched for any posts containing "captioncall’ with 0 results; thus, I would like to post this information for anyone else who may need such information.
I am about to work on the network functionality for a CaptionCall telephone using a hEX router. Since installing the hEX, our CaptionCall phone has been dropping it’s network connection like the plague infected it…
Network Requirements
Caption Ports:
• Port 80 (TCP) Initiates downloads
• Port 443 (TCP) Initiates captioning
• Port 5026-5035 (TCP & UDP) transmit audio
• Port 5061 (SIPS) Secure SIP with TLSV1
• Port 15000-16999 (UDP) transmit caption
VoIP Ports:
RTP Real Time Transport Codec 711
• Port (UDP) 2000-2200
• SIP (UDP → TCP) 5065
Their network engineers believe the device is secure enough to open up to the Internet… So I will ask the following:
Instead of making individual rules for all of the above, would it not be easier to simply add a Hairpin NAT for the device?
Any advise or suggestions are greatly appreciated!
I am not familiar with that particular service however it could be that the SIP helper is messing things up.
Have you tried:
Modifying SIP Helper
Add the ports they use for SIP signalling to the service ports so that the router is aware of them.
/ip firewall service-port set sip ports=5060,5061,5065
Connected via bridged Loco M2. As per CaptionCall support I even reset the device to factory defaults. I also assigned a static IP for the device. What is not posted are the defconf WAN & LAN masquerade rules.
Service Ports
NAT Rules
The blackened area is my public IP address.
Results
The captioning service does function but as you can see…
I disabled all the drop rules and then enabled them one at a time individually to find the offending rule. Originally I had set the defconf: accept ICMP rule to Drop. This rule change was the cause of the problem.
