Firewall requirements
SIP ALG must always be switched off!
If the managing party really does not want to allow all traffic, for example due to regulations, these are the known necessary firewall configurations:
- Disable SIP ALG
- Allow outgoing UDP/5060 (target ports, source ports must be 'any')
- Allow outgoing TCP/5061 (target ports, source ports must be 'any')
- Allow outgoing RTP (UDP ports 6000-65531, both source and destination ports)
- Allow outgoing DNS (UDP port 53)
- Allow outgoing NTP (UDP port 123)
- Allow outgoing HTTP(S) (TCP ports 80 and 443)
Again, it is recommended to just open all traffic to our IP ranges.
Make sure the links below are allowed or whitelisted.
- https://portal.telsmart.eu
- https://my.telsmart.eu
- https://dfa.phoneserver.io
- https://api.phoneserver.io
- https://api-eu-central-1.phoneserver.io
- https://static.telsmart.eu
- https://static.svc.telsmart.cloud
- https://d1s0pm2tglm3x4.cloudfront.net
