jerry scharf - 2009-12-14

Hi,

I am getting ready to plunge into VoIP. I have held off because of my off connection setup.

My local net has internet routeable addresses on eth0 and a cable modem on eth1 with a dynamic address. I have a tunnel going to a router from the larger address block I am part of.

I have well known servers that are reached over the tunnel, but ship most of my traffic directly using masquerade. I use iptables to make all this happen, with fw-mark tagging packets on the way in and a second routing table that sends things over the tunnel on the way out for marked packets.

I am looking at setting up an asterisk server on one of my well known machines and thought about using siproxd on the firewall. If I wanted to send all the packets over the tunnel, I wouldn't need to do much, but I want it to send outbound sip connections and all rtp out with the current dynamic cable address and be able to accept sip connections over both the dynamic cable address and the well known address.

It's the last part that is tricky. I both to explain to sipproxd that it can take two input sip IP addresses on the same interface and keep the connections straight. I also need some way of separating the sip packets coming out of sipproxd whether to be tunneled or not. I think this is as simple as the source address, but I wanted to check this out.

Can sipproxd handle this odd setup?