Aptela sells, recommends and provides support for the VoIP components of our factory configured EdgeMarc routers only. Aptela does not support or endorse any other customer networking equipment. The below configuration instructions are for information purposes only.

DEFAULT SETTINGS 
 
Our test lab results show that the default firewall rules are sufficient in order to allow two-way communication.  The phones will initially send a request to register with Aptela.   The registration process will open a pinhole in the firewall and allow communication to that phone in and out. 


 

There are two layers at which you can create rules: Network and Transport.  The difference is the Network layer specifies IP addresses and the Transport layer specifies the port numbers. 
 
When users begin to add their custom rules to accommodate their network with security, there is a tendency to add rules which will inadvertently block the same ports that the VoIP phones are using.  This is why it is necessary to be careful when creating rules.   Also, be careful not to have overlapping rules as well as this will slow down the processing time and increase cpu load. 

APTELA RECOMMENDED SETTINGS 
We recommend that you allow for all traffic at any port coming from Aptela's subnet range. This will ensure that all signaling and audio traffic is allowed to return into your network and reach your phones. If you have one-way or no audio (one side of the call can't hear the other), please make sure these two rules are added.

To add these rules, click on Firewall -> Access Rules -> Add. 

1. For the "Action" click the Allow radio button.   
2. For the “Service” choose Any.  This will allow traffic from all ports. 
3. For the “Source” choose WAN and enter 74.217.82.1 for the “Address Range Begin” and then enter 74.217.82.254 for the “Address Range End”.
4. For the “Destination” choose LAN and enter * (star) for “Address Range Begin”.
5. Click OK to save. 

You will need to create another rule where:

1. For the "Action" click the Allow radio button.
2. For the “Service” choose Any.  This will allow traffic from all ports.
3. For the "Source" choose LAN and enter * for the "Address Range Begin"
4. For the "Destination" choose WAN and enter 74.217.82.1 for the "Address Range Begin" and 74.217.82.254 for the "Address Range End"
5. Click "OK" to save

Next, go to Firewall -> VoIP settings. There, check “Enable consistent NAT” and
uncheck “Enable SIP Transformations”.  NOTE: Depending on your SonicWall firmware version, this may not be an available setting for you.

Make sure the H.323 Setting is unchecked as Aptela does not use the H.323 VoIP protocol.   

Lastly, click Apply at the top of the screen.