We have a FusionPBX behind a NATing firewall, with multiple internal subnets connected to that firewall. Initially, when we had endpoints in subnets where the PBX was not located (e.g. FusionPBX on the LAN and the endpoint on the DMZ), FreeSwitch was sending the public IP address in the SDPs to those endpoints.
To fix this issue, I set external_sip_ip and external_rtp_ip to autonat:<public IP>, and then created a default deny ACL that 'allowed' all of our internal subnets where endpoints could be located, and referenced that ACL in the local-network-acl setting in the internal SIP profile. This caused FreeSwitch to send its private IP in the SDPs to endpoints on other internal subnets. Hope this helps someone else trying to do the same thing!
To fix this issue, I set external_sip_ip and external_rtp_ip to autonat:<public IP>, and then created a default deny ACL that 'allowed' all of our internal subnets where endpoints could be located, and referenced that ACL in the local-network-acl setting in the internal SIP profile. This caused FreeSwitch to send its private IP in the SDPs to endpoints on other internal subnets. Hope this helps someone else trying to do the same thing!
Last edited: