Guide to Configuring Your Router and Firewall (QoS)

Guide to Configuring Your Router and Firewall (QoS)
Guides

Mise à jour le September 21, 2021

A detailed guide on how to configure your router and firewall to be compatible with OMNITOTAL’s hosted IP telephony services, is provided below. You must follow these instructions to ensure proper functioning of your telephone service.

The few simple rules listed below guarantee a Quality of Service (QoS) that aims to optimize the network resources to carry your telephone system’s control, voice and video traffic efficiently.

OMNITOTAL service phones are registered on our servers through SIP (UDP Port 5060) and use the RTP protocol (UDP Ports) to carry voice or video.    

Instructions for configuring the quality of service 

  1. Disable all settings/options in the VoIP section. There is no need for your router to help us by substituting local IP addresses of your phones with a public IP address. Make sure that your phones always use the same public source port.  Most installations are running a NAT (Network Address Translation) service and therefore have the processes in place to effectively manage this feature.  
  2. QoS rules typically apply to sets of destination IP addresses. Multimedia packets (voice and video), i.e. UDP packets, must be prioritized to IP destinations or sources 50.100.21.192/27 and 68.67.53.64/26.
  3. The maximum inactive UDP session timeout must be more than 60 seconds. The infrastructure sends keep-alive packets to determine whether a phone is still accessible and at what speed (latency).
  4. This mechanism is also used to refresh the NAT bindings used by phones to pass traffic, allowing us to keep contact with the devices on your network.
  5. It is also suggested to prioritize (in the same way as UDP traffic) the ICMP requests from our monitoring servers 50.100.21.192/27 and 68.67.53.64/26 to make sure these requests are not ignored during busy periods as they are considered of lower priority.
  6. If your firewall is blocking outgoing traffic, here are the rules to add to your firewall:
    SIP TCP/UDP 5060 and 5061 Signaling
    RTP UDP 10000 to 50000 Multimedia (voice and video)
    T.38 UDP 4000 to 5000 Fax
    HTTP TCP 80 Configuration
    HTTPS TCP 443 Configuration
    NTP UDP 123 Timestamp
    DHCP/DNS UDP and TCP 53 Configuration
  7. SIP ALG must be deactivated.  This function can go by a different name, depending on the brand of the router or firewall used.
  8. Multimedia voice traffic: 100 kbps of available bandwidth must be guaranteed for each direction for each channel of voice. An active audio conversation uses 100 kbps of bandwidth on your network. A rule of thumb to use is to guarantee 100 kbps of bandwidth for each available voice (audio) channel.  
  9. Softphones: There may be additional specific instructions for the operation of softphones. For example, the CounterPath BRIA Softphone requires additional settings for PUSH operation. Check with the supplier to get the necessary configurations.

Below is a detailed downloadable guide to configuring the quality of service (QoS) of your installation to ensure prioritization of this service on your data networks. 

Download the guide here