Connecting remote user using your ISP IP

From Snom ONE wiki

Using your ISP IP is a cheaper alternative then using a static IP but because ISP IP is dynamic you may have to keep an eye when the change occurs so that there is no interruptions.


Contents

What is your IP?

1. Open a cmd prompt and type "ipconfig", to find out what your IP is on your snomONE system.

Snom1234543.jpg


Open a browser to log into your router and open port 80.

Opendjsd1.jpg

To verify that your snomONE is reachable from the outside, Open a browser and navigate to whatismyip.com shown here.

Whatus23.jpg

you should be able to log into your snomONE from the outside world using your ISP IP.

9842k.jpg


SIP Ports

These settings are located within Admin > Settings > Ports. In this section, you can provide specific port information for the SIP protocol. SIP can run on UDP, TCP, or TLS. TCP and UDP send the SIP packets unencrypted and therefore are considered insecure. TLS is used for secure SIP communication since it encrypts the SIP signalling packets much like HTTPS encrypts HTTP traffic. The default SIP port per RFC 3261 is 5060 for SIP and 5061 for SIPS. The snom ONE software is listening for and transmitting SIP requests and responses on these ports. (Changes to HTTP and SIP settings require a system restart.)

  • SIP UDP Ports: If you are using SIP over UDP, you need to set this field. The default port for UDP is 5060. Multiple ports are permitted (e.g., 5060 5064).
  • SIP TCP Ports: If you are using SIP over TCP, you need to set this field. The default port for TCP is 5060.
  • SIP TLS Ports: If you are using SIP over TLS (Transport Layer Security - Security over TCP), you need to set this field. The default port for TLS is 5061.
  • Maximum number of SIP connections per second: This setting specifies the number of SIP conversations the system will respond to in 1 second. This setting is useful for deterring against SIP attacks.
  • Maximum number of SIP connections: This setting limits the total number of SIP connections the system will support. This setting must be configured in busy environments where resource limitation is an issue.
  • "RTP Ports" These settings are located within Admin > Audio > Ports. The Real Time Protocol (RTP) ports are used for sending and receiving media. Be sure to specify a reasonable port range so that you have enough ports for all open calls.

Ports3457.jpg

Port Range Forwarding

To successfully register plug and play and have a two way audio conversation, we will need to port forward snom ones SIP,RTP,UDP,TCP,TLS,TFTP,LDAP ports.

Porte6755.jpg

IP Replacement & IP routing list

SIP IP Replacement List: This setting applies to a system that is used in a DMZ zone with NAT (e.g., to connect remote phones to a system that is not on a public IP address). In this case, when the system builds the remote SIP packets, it will use the public IP address of the router. In this demonstration we are not putting snom ONE on a DMZ but simply using the port forwarding mechanism on your router.

For an IP replacement you can add the following.

The 1st is the IP of your snom ONE server and the 2nd entry is your ISP IP.

10.20.10.146/50.163.65.45

Iprepl123.jpg

IP Routing List

IP Routing List: The IP Routing List setting is used to override the operating system IP routing table and is linked to the routing table (this setting will be consulted by the system before consulting/using the operating system). Whenever the system wants to find out the IP address that is being used when sending a SIP packet, it steps through the list and looks for a match (using the netmask Mask) to a destination address (DAdr). If there is a match, it uses the provided IP address (LAdr). The format of this field is DAdr/Mask/LAdr [DAdr/Mask/LAdr]... Both the DAdr and the LAdr must be an IPv4 or IPv6 address (e.g. 192.168.1.2), DNS addresses are not being resolved here. The mask must also be in the form of an IP address.

Replace3234.jpg

Here an example i used on my deployment.

10.20.10.0/255.255.255.0/10.20.10.146 0.0.0.0/0.0.0.0/50.163.25.36

1. 10.20.10.0 is my range. 2. 10.20.10.146 is the IP of my snom ONE box. 3. 0.0.0.0/0.0.0.0 anything in between 4. My ISP IP 50.163.25.36

The steps above should allow you to register local phones and remote phones for your deployment.


Registering a phone remotely

Add the snom MAC address to the extension registration

Mac4343.jpg

Log into your snom phone and navigate to Advance--->Update--> to the Setting URL and type in your ISP IP http://50.x.x.x.x

Make sure that the Update Policy is set to "Update Automatically" Save and reboot the phone.

5455update.jpg

Access List

When a phone has been provisioning to the PBX it's always good to add the remote users ISP IP to the IP Access Control so that it will not be blacklisted by the system. IP Access Control


Accesss3334.jpg

Documents