VoIP
534
SonicOS Enhanced 4.0 Administrator Guide
Figure 47:5 Trusted VoIP Service Topology
For VoIP clients that register with a server on the DMZ or LAN, the SonicWALL security
appliance automatically manages NAT policies and access rules. The SonicWALL security
appliance performs stateful monitoring of registration and permits incoming calls for clients
while they remain registered. No configuration on the VoIP clients is required.
To make a server on the LAN accessible to clients on the WAN:
7. Define a Host address object with the zone and IP address of the server.
8. Define a NAT policy, mapping traffic coming to the SonicWALL security appliance’s public
(WAN) IP address and VoIP service (SIP or H.323 Gatekeeper) to the server.
9. Define access rules allowing VoIP service to pass through the firewall.
10. See the “Using the Public Server Wizard” section for information on configuring this
deployment.