Guide to Configuring Your Router and Firewall (QoS)
A detailed guide on how to configure your router and firewall to be compatible with OMNITOTAL’s hosted IP telephony services, is provided below. You must follow these instructions to ensure proper functioning of your telephone service.
The few simple rules listed below guarantee a Quality of Service (QoS) that aims to optimize the network resources to carry your telephone system’s control, voice and video traffic efficiently.
OMNITOTAL service phones are registered on our servers through SIP (UDP Port 5060) and use the RTP protocol (UDP Ports) to carry voice or video.
Instructions for configuring the quality of service
- Disable all settings/options in the VoIP section. There is no need for your router to help us by substituting local IP addresses of your phones with a public IP address. Make sure that your phones always use the same public source port. Most installations are running a NAT (Network Address Translation) service and therefore have the processes in place to effectively manage this feature.
- QoS rules typically apply to sets of destination IP addresses. Multimedia packets (voice and video), i.e. UDP packets, must be prioritized to IP destinations or sources 22.214.171.124/27 and 126.96.36.199/26.
- The maximum inactive UDP session timeout must be more than 60 seconds. The infrastructure sends keep-alive packets to determine whether a phone is still accessible and at what speed (latency).
- This mechanism is also used to refresh the NAT bindings used by phones to pass traffic, allowing us to keep contact with the devices on your network.
- It is also suggested to prioritize (in the same way as UDP traffic) the ICMP requests from our monitoring servers 188.8.131.52/27 and 184.108.40.206/26 to make sure these requests are not ignored during busy periods as they are considered of lower priority.
- If your firewall is blocking outgoing traffic, here are the rules to add to your firewall:
SIP TCP/UDP 5060 and 5061 Signaling RTP UDP 10000 to 50000 Multimedia (voice and video) T.38 UDP 4000 to 5000 Fax HTTP TCP 80 Configuration HTTPS TCP 443 Configuration NTP UDP 123 Timestamp DHCP/DNS UDP and TCP 53 Configuration
- SIP ALG must be deactivated. This function can go by a different name, depending on the brand of the router or firewall used.
- Multimedia voice traffic: 100 kbps of available bandwidth must be guaranteed for each direction for each channel of voice. An active audio conversation uses 100 kbps of bandwidth on your network. A rule of thumb to use is to guarantee 100 kbps of bandwidth for each available voice (audio) channel.
- Softphones: There may be additional specific instructions for the operation of softphones. For example, the CounterPath BRIA Softphone requires additional settings for PUSH operation. Check with the supplier to get the necessary configurations.
Below is a detailed downloadable guide to configuring the quality of service (QoS) of your installation to ensure prioritization of this service on your data networks.