Solved

Cisco VPN Remote Client Blocks Outbound Voice traffic

Posted on 2006-10-25
12
471 Views
Last Modified: 2013-11-16
I have a Mitel Softphone on my laptop that connects through a Cisco VPN client.  Everything connects great other then my out bound voice traffic gets stopped by the Firewall that is built into the VPN client.  Is there anyway to change the settings on the Cisco VPN client Firewall to allow this traffic.
0
Comment
Question by:Firstair
  • 4
  • 3
  • 3
12 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 17810782
There is no configuration of the VPN client other than "split-tunneling" on the remote end. What are you connecting to? A PIX firewall or VPN concentrator?
Do you control the firewall, or are you just an end user? If end user then there is absolutely nothing that can be done on the client end to change the behavior of the VPN client.
0
 

Author Comment

by:Firstair
ID: 17811144
I am connecting to a Pix 515.  I do control the Firewall.  However I have it set up for my self to allow all all traffic through the VPN connection.  It seems to be the Cisco VPN client built in stateful firewall that is blocking this traffic.  I was hoping I could either cange the stateful firewall config on the client or disable it from coming on automatically when the VPN connection is made.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17811208
So, the softphone connects to a call manager/pbx at the corp office sitting behind your PIX 515?
Tunneling "IP" through the client should allow it. The firewall does not affect any traffic through the established tunnel.
If the softphone connects to an external service, like Skype or other Internet based service, then the fact that you tunnel all traffic through to the 515 will certainly block that function because it needs Internet access which you are tunneling, and the 515 can't turn that traffic back around out to the world and back to you through the tunnel.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 79

Expert Comment

by:lrmoore
ID: 17811218
By the way, I use a Cisco softphone on my laptop to a Cisco call manager that sits behind a PIX 515 and connect using the VPN. It works very well and I've never had an issue with it..
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17812157
Just to add, I have used softphones from both Cisco and Avaya through PIX vpn and it works just fine. Your case is probably the configuration. To where does it connect to, can you describe a little on that ? When you say 'block' what happens ? It doesn't connect to the server at all?

Cheers,
Rajesh
0
 

Author Comment

by:Firstair
ID: 17812219
I get connected to the server, I can answer the calls and make outgoing call. When the call is in progress I can  hear them talking but they can not hear me at all.  
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17812278
This is definitely not a problem with the VPN.

First thing I would try to do is to reduce the MTU size and see if that improves anything. Do this;

On the program menu, there will be a utility called 'SetMtu' in the Cisco VPN Client folder. Use that and set the MTU size to 1300 and see if that makes any difference.

Cheers,
Rajesh
0
 

Author Comment

by:Firstair
ID: 17812328
MTU is already set for 1300
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 500 total points
ID: 17813179
Okay, then I would try tuning the receiver and transmitter options in the softphone client again ?

May be some modes won't work like Telecommuter/Road warrior.

Cheers,
Rajesh
0
 

Author Comment

by:Firstair
ID: 18045715
I solved the problem myself at it ended up being a subnetting problem.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question