I've been experiencing intermittent issues with our ISP going down the past month. They've all occurred after hours/overnight, so I believe they were actually making repairs due to damage sustained from a partial building collapse a block away. The connection seems back to normal as of this weekend speed and stability wise. The problem is when the drops have occurred, my VoIP phones are losing connection to our SIP provider, when the WAN comes back up, the phones attempt to use the old ports and are not able to regain service. I have to clear the nat table with conntrack -F then restart the phones to get them to regain service. Is there a way to clear the nat table for my phone vlan upon wan timeout so that the phones can gracefully recover when the wan comes back up?
I've read the following discussion, but it does not appear a fix was found and I also do not have a backup WAN.
clearing NAT for voip sip after dual wan failover - Discussions - Sophos Firewall - Sophos Community
Quote