Firewall - Wiki


From Wiki

Jump to: navigation, search



When configuring your firewall to work with, there are certain ports which may need to be enabled to avoid quality and/or stability issues. Generally these ports are configured by default; however for users requiring the specific port numbers and protocols please use the information below:

SIP Ports

Destination port = 5060
*Port range = 5060 - 5080
Protocol = UDP or UDP/TCP
Direction = Incoming and Outgoing


Destination port = 5061
Port range = 5061 - 5081*
Protocol = TCP
Direction = Incoming and Outgoing

RTP Ports

The RTP port may vary by device. If configuring a firewall you will want to configure a range which includes the default RTP port in your device.

Source port range = 5004-5005
Destination port range = 10001-20000 UD
Protocol = UDP or UDP/TCP
Direction = Incoming and Outgoing

IP addresses

If you have a secured/restricted network and need to know the IP addresses to allow for, then please use the addresses found Here .

Router Settings

If your router includes a SIP ALG and/or SPI Firewall setting please ensure that it is disabled.


When using a SonicWALL and a PBX behind that SonicWALL, some of the inbound SIP connections may get refused because the SonicWALL is quick to timeout the UDP sessions on the firewall. Please Click Here for further details.


Generally, pfSense should gracefully handle ATAs or handsets without special configuration of the firewall rules. If you encounter issues, refer to the pfSense VoIP configuration or PBX configuration.

If you still have questions on this topic please contact us for further assistance.

Personal tools
Actions Wiki Blog
Guides (English)
Guides (Français)
Guías (Español)