Results 1 to 3 of 3

Thread: Quadro 16x behind FortiGate Firewall

  1. #1


    Hello Everyone:

    I have installed a Quadro 16x in my work place, but I have to placed it behind a firewall (fortigate 60) you can check it at www. I enabled all services in this firewall to the private IP address, but the extensions are not registering with the SIP proxy ofepygi ( and also I'm having another trouble about calling extensions. All IP lines are configured with Softphones (xlite) and sometimes when I call one extension there is a message that says "System Overloaded" and I have to reboot the quadro to get rid of this message. Does anybody has an idea of what could be happening here?



  2. #2


    Please help if somebody is familiar with the mentioned type of router. Pedro says he opened all possible ports but still something prevents pakets to go back to the Quadro. From the Quadro it is impossible to ping even the default gateway:

    Checking internet connectivity (ICMP ping):
    Gateway ( Warning: could not be reached (many ISPs block this)


  3. #3


    Ok this firewall does work fine.
    A few things : Firstly ensure the device doing the NAT in your network has it's SIP ALG enabled. Any other devices should have it disabled.

    We ran into an issue because the ADSL router in front of the firewall had the SIP ALG still on.

    Next dedicate an external IP address to your phone system on the firewall. Under firewall -> virtual IP create a new entry :

    External Interface WAN1
    Type Static NAT
    external Ip X.X.X.X
    internal ip

    This sets up the full cone NAT for the PBX.

    Now go to protection profile and create a new one called SIP.

    Expand VoIP

    Check SIP
    Set the register limit to something low, I use 2 (are you going to get more than 2 extensions registering a second ?)
    Same with invites adjust to suit.

    Click ok.

    Now create an address book entry internal for the QUADRO_PBX.

    Finally create a new WAN1 to Internal rule

    Source All
    Destination QUADRO_PBX
    Service SIP
    Action Accept
    NAT check

    Protection Profile SIP.

    That should do it. Out going traffic should match the existing Internal -> WAN1 rule.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Using a Quadro with Dual WAN Firewall
    By davi807 in forum Troubleshooting and Problems
    Replies: 1
    Last Post: 07-17-2006, 03:11 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts