[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Cisco VPN Remote Client Blocks Outbound Voice traffic

Posted on 2006-10-25
12
Medium Priority
?
475 Views
Last Modified: 2013-11-16
I have a Mitel Softphone on my laptop that connects through a Cisco VPN client.  Everything connects great other then my out bound voice traffic gets stopped by the Firewall that is built into the VPN client.  Is there anyway to change the settings on the Cisco VPN client Firewall to allow this traffic.
0
Comment
Question by:Firstair
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 3
12 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 17810782
There is no configuration of the VPN client other than "split-tunneling" on the remote end. What are you connecting to? A PIX firewall or VPN concentrator?
Do you control the firewall, or are you just an end user? If end user then there is absolutely nothing that can be done on the client end to change the behavior of the VPN client.
0
 

Author Comment

by:Firstair
ID: 17811144
I am connecting to a Pix 515.  I do control the Firewall.  However I have it set up for my self to allow all all traffic through the VPN connection.  It seems to be the Cisco VPN client built in stateful firewall that is blocking this traffic.  I was hoping I could either cange the stateful firewall config on the client or disable it from coming on automatically when the VPN connection is made.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17811208
So, the softphone connects to a call manager/pbx at the corp office sitting behind your PIX 515?
Tunneling "IP" through the client should allow it. The firewall does not affect any traffic through the established tunnel.
If the softphone connects to an external service, like Skype or other Internet based service, then the fact that you tunnel all traffic through to the 515 will certainly block that function because it needs Internet access which you are tunneling, and the 515 can't turn that traffic back around out to the world and back to you through the tunnel.
0
Q2 2017 - Latest Malware & Internet Attacks

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out our latest Quarterly Internet Security Report!

 
LVL 79

Expert Comment

by:lrmoore
ID: 17811218
By the way, I use a Cisco softphone on my laptop to a Cisco call manager that sits behind a PIX 515 and connect using the VPN. It works very well and I've never had an issue with it..
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17812157
Just to add, I have used softphones from both Cisco and Avaya through PIX vpn and it works just fine. Your case is probably the configuration. To where does it connect to, can you describe a little on that ? When you say 'block' what happens ? It doesn't connect to the server at all?

Cheers,
Rajesh
0
 

Author Comment

by:Firstair
ID: 17812219
I get connected to the server, I can answer the calls and make outgoing call. When the call is in progress I can  hear them talking but they can not hear me at all.  
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17812278
This is definitely not a problem with the VPN.

First thing I would try to do is to reduce the MTU size and see if that improves anything. Do this;

On the program menu, there will be a utility called 'SetMtu' in the Cisco VPN Client folder. Use that and set the MTU size to 1300 and see if that makes any difference.

Cheers,
Rajesh
0
 

Author Comment

by:Firstair
ID: 17812328
MTU is already set for 1300
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 1000 total points
ID: 17813179
Okay, then I would try tuning the receiver and transmitter options in the softphone client again ?

May be some modes won't work like Telecommuter/Road warrior.

Cheers,
Rajesh
0
 

Author Comment

by:Firstair
ID: 18045715
I solved the problem myself at it ended up being a subnetting problem.
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Are you ready to place your question in front of subject-matter experts for more timely responses? With the release of Priority Question, Premium Members, Team Accounts and Qualified Experts can now identify the emergent level of their issue, signal…
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question