So, far I was able to configure chan_dongle on asterisk.
Issue No.1 On local Lan, It was successful using making calls with audio using zoiper with local LAN IP(192.168.88.24). Issues arise when I switch to 3cx. So, I followed the 3cx port forwarding guide and forwarded all the ports https://www.3cx.com/docs/mikrotik-firew ... iguration/. But the weird thing is that when the ports are forwarded 3cx trunk doesn’t register with asterisk, but if I turn off the NAT rules it connects to the asterisk trunk.
Code: Select all
add action=dst-nat chain=dstnat comment="3CX SIP UDP" dst-port=5060 protocol=\
udp to-addresses=192.168.188.29 to-ports=5060
add action=dst-nat chain=dstnat comment="3CX SIP TCP" dst-port=5060 protocol=\
tcp to-addresses=192.168.188.29 to-ports=5060
Issue No.2
I can call others and hear their voice, but they can’t hear me. But, if someone calls me, none of us can hear each other. Every forum on the net pointed out a firewall issue.
Issue No.3
Following all the guidelines from 3cx website I still get "3CX SIP Server... failed" & "detecting SIP ALG... failed". Here, is my firewall,nat export:
Code: Select all
/ip firewall filter
add action=accept chain=input comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=input comment="defconf: drop invalid" connection-state=\
invalid
add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
add action=accept chain=input comment="Allow ADMIN to Router" \
in-interface-list=LAN src-address-list=allowed_to_router
add action=accept chain=input in-interface-list=LAN port=53 protocol=tcp
add action=accept chain=input in-interface-list=LAN port=53 protocol=udp
add action=drop chain=input
add action=accept chain=forward comment="defconf: accept in ipsec policy" \
ipsec-policy=in,ipsec
add action=accept chain=forward comment="defconf: accept out ipsec policy" \
ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
add action=accept chain=forward comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" \
connection-state=invalid
add action=accept chain=forward comment=" Allow Port Forwarding - DSTNAT" \
connection-nat-state=dstnat connection-state=new in-interface-list=WAN
add action=accept chain=forward comment="ENABLE LAN to WAN" \
in-interface-list=LAN out-interface-list=WAN
add action=accept chain=forward dst-address=192.168.188.0/24 src-address=\
192.168.88.0/24
add action=accept chain=forward dst-address=192.168.88.0/24 src-address=\
192.168.188.0/24
add action=drop chain=forward comment="Drop All Else"
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" \
ipsec-policy=out,none out-interface-list=WAN
add action=dst-nat chain=dstnat comment=pihole_bypass dst-address=\
192.168.188.25 dst-port=53 protocol=udp to-addresses=192.168.88.1
add action=dst-nat chain=dstnat comment=pihole_bypass dst-address=\
192.168.188.25 dst-port=53 protocol=tcp to-addresses=192.168.88.1
add action=dst-nat chain=dstnat comment="Resilio Sync (UDP)" dst-address=\
0.0.0.0 dst-port=58444 in-interface-list=WAN protocol=udp to-ports=58444
add action=dst-nat chain=dstnat comment="3CX Presence and Provisioning HTTPS" \
dst-port=5001 protocol=tcp to-addresses=192.168.188.29 to-ports=5001
add action=dst-nat chain=dstnat comment="3CX SIP UDP" dst-port=5060 protocol=\
udp to-addresses=192.168.188.29 to-ports=5060
add action=dst-nat chain=dstnat comment="3CX SIP TCP" dst-port=5060 protocol=\
tcp to-addresses=192.168.188.29 to-ports=5060
add action=dst-nat chain=dstnat comment="3CX SIP TLS" dst-port=5061 protocol=\
tcp to-addresses=192.168.188.29 to-ports=5061
add action=dst-nat chain=dstnat comment="3CX Media UDP" dst-port=9000-10999 \
protocol=udp to-addresses=192.168.188.29 to-ports=9000-10999
add action=dst-nat chain=dstnat comment="3CX Tunnel TCP" dst-port=5090 \
protocol=tcp to-addresses=192.168.188.29 to-ports=5090
add action=dst-nat chain=dstnat comment="3CX Tunnel UDP" dst-port=5090 \
protocol=udp to-addresses=192.168.188.29 to-ports=5090
/ip firewall service-port
set sip disabled=yes