There is a requirement to connect to other operator by means of SIP via IPsec and RTP over open Internet.
For the time being I have setup a test environment:
two pfSense firewalls with running IPsec between them and 2 asterisks on the LAN side of each firewall. The two PBXs can exchange packets successfully (LAN to LAN ping and ssh access - this proves that the routing is working OK).
I have a problem with one of the asterisk boxes (let's call it TEST) - it does not process/accept packets from the other asterisk (let's call it HOME). I captured SIP on TEST's interface (this proves that the packets are getting there) but asterisk on this server is not processing them at all; there is nothing in the asterisk cli, no error messages .. etc... - the iptables have been turned off.
The HOME asterisk is processing SIP packets OK.
The other challenge is to send RTP packets over the Internet - I have not managed to get to this stage as yet.
Once this issue has been sorted out we will move from the test environment to the real implementation where probably we will be looking for a freelancer as well.
Once accepted I will provide a network diagram and access to the boxes.
I would require a clear explanation what the problem was to avoid it in the future.