This step is necessary if you want users to be able access your local on-premise pascom phone system when they are “on the move” via the pascom mobile app (Android & iOS) or the pascom desktop client
This options uses your fixed external IP address, without needing to setup a domain name or certificates.
Requirements
Pros
Cons
In order to enable pascom server access from the Internet, it is necessary to setup a Port Forwarding on to the IP address of the pascom server as follows:
Port | Description |
---|---|
TCP 5061 | SIP-TLS - secure SIP communication |
TCP 5222 | pascom Desktop and Mobile client access |
UDP 30000 - 35000 | SRTP - encrypted Voice Data |
Port | Description |
---|---|
TCP 636 | LDAPS for telephone book access via LDAP |
TCP 8884 | Provisioning of Desktop IP Phones (hardware telephones) |
TCP 8885 | VPN Tunnel direct to the phone system |
Having updated your Firewall settings, you must now enter your external IP Address on the pascom Server Interface:
The Interface will now restart. Now you can continue with the setup of your pascom phone system.
This option you will have your own externally accessible domain name which points to the external IP Address of your router.
Requirements
Pros
Cons
In order to enable pascom server access from the Internet, it is necessary to setup a Port Forwarding on to the IP address of the pascom server as follows:
Port | Description |
---|---|
TCP 80/443 | Phone system Web Interface - Important for Let’s Encrypt certificates |
TCP 5061 | SIP-TLS - secure SIP communication |
TCP 5222 | pascom Desktop and Mobile client access |
UDP 30000 - 35000 | SRTP - encrypted Voice Data |
Port | Description |
---|---|
TCP 636 | LDAPS for telephone book access via LDAP |
TCP 8884 | Provisioning of Desktop IP Phones (hardware telephones) |
TCP 8885 | VPN Tunnel direct to the phone system |
As valid certificates can only be created using the domain name and not IP addresses, you will now need to setup a domain name for the external AWS IP address.
Should you not have your own, external DNS server available,no-ip offers an easy way to setup externally accessible domain names on your router (Fritzbox, etc).
Now your have modified your firewall and setup up a domain name, your pascom phone system server has the capability to fully and automatically setup a Let’s Encrypt certificate for these domain names. Simply follow these steps:
The Interface will now restart and automatically applies the Let’s Encrypt Certificate. Should the interface restart encounter errors, please check your Firewall Settings, in particular Port TCP 443 and your domain name.
You can now continue with the setup of your phone system.