Hi,
I have a strange problem with SIP going through a VPN
connection.
I have two sites, connected via a site 2 site full mesh vpn
connection.
NAT is disabled inside the VPN community.
everything works ok except sip, which is being dropped by
the firewall
with the message: "connection contains real ip of
natted address". I
even put two no-nat rules in the nat tab of the fw to not
allow nat to
happen between the two networks. I disabled anything I could
find
regarding SIP in smart defense without any luck.
I'm puzzled on why that is happening as from site A to site
B I can open
the web interface of the phone, but SIP is being dropped and
I'm
wondering if any of you came across this issue and how did
you manage to
fix it ?
site A enforcement module is NGX R65, site B enforcement
module is NGX
R60_HFA05.
thank you,
sin
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV amadeus.us.checkpoint.com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http:
//www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-ownerts.checkpoint.com
=================================================
|
