[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2026
  • Last Modified:

Site to Site VPN--Cisco phones can call each other, but no Audio

I have two cisco routers:  Main office (Call Manager)-->pix vpn-----vpn 871<---cisco 7940 phone.

VPN is working and phone at remote site is registering with Call Manager.  Phone can make calls to extensions.  However, there is no audio/voice after answering call.

Thanks
0
tashmore
Asked:
tashmore
  • 3
  • 2
1 Solution
 
siegemusCommented:
Check that you have allowed VoIP traffic trough the firewall.  The port used to register with call manager is not necissaraly the same.  The other thing to check is that you are using a codec with enough compression to cope with the speed of your VPN.
0
 
tashmoreAuthor Commented:
That makes sense.  I will need to create an access list that allows skinny protocol.  However, I am a little confused about the access list.  Since the VPN is created do I bother with Global IP address or just use local network IPs?

192.168.1.0 (Call Manager Network)
192.168.1.250 (Call Manager)

Remote Site
192.168.4.0 network
0
 
siegemusCommented:
It should work with local network IP's

If you can connect to Call Manager then the VPN is working and the 2 LAN's can communicate ok.  Your only problem is that when you try and send packets containing sound they aren't getting trough.  I would say that once the firewall passes skinny packets that the voice should be delivered.
0
New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

 
tashmoreAuthor Commented:
Siegemus

I have narrowed the problem down to a subnet issue.  My remote site is 4.0 network and my main site is 1.0 network.  The problem is the phones at main site are on the 11.0 network.  Can you advise on how to configure routing so that VPN recognizes multiple subnets?  Should I close this question and ask another?

thanks
0
 
cscorbetCommented:
you did say: "Phone can make calls to extensions nut no voice"

so maybe this is the issue:

Ive seen this when the Cisco pix denies the voice stream and youll need to Configure Application Inspection (Fixup),

On the pix had to do something like:

fixup protocol skinny 2000
Thats it!
You may also need to do this for other voice protocols that you may have in use (e.g. sip etc)
0
 
tashmoreAuthor Commented:
Cisco TAC provided the solution:

Background:  The remote IP phone was registering with Call Manager using a VPN.  

Problem:  The IP phone was calling another office with a different subnet than main office.  That particular office has their phones on a VLAN.

Solution:  Create VPNS with other office including VLANs.
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now