Network routing problem

zystemsgo
zystemsgo used Ask the Experts™
on
We have an Asterisk phone server with 2 network cards.  One network card is connected to the WAN and the other is connected to a switch that is connected to our phones.   We also have a Sonicwall 3060 connected on port X5 connected to the switch which has the phones are on.   Our locallan is 192.168.123.0 and the phone network is 172.16.2.0.   All the phones have a gateway ip of 172.16.2.1 (the Asterisk Phone server).  

The problem I am having is I cannot ping the phones from my locallan(192.168.123.0).   I can ping the Asterisk server but not the phones.   I can also ping the phones from the Sonicwall which has an ip of 172.16.2.2 on X5.

I think I am missing a route, iptable, etc from the Asterisk.  

Here is the routes from the Asterisk server:
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
70.22.124.0     L246.BALT2-DSL- 255.255.255.0   UG    0      0        0 eth0
70.22.124.0     *               255.255.255.0   U     0      0        0 eth0
172.16.2.0      *               255.255.255.0   U     0      0        0 eth1
192.168.123.0   172.16.2.2      255.255.255.0   UG    0      0        0 eth1
169.254.0.0     *               255.255.0.0     U     0      0        0 eth1
default         L246.BALT2-DSL- 0.0.0.0         UG    0      0        0 eth0

Here is the iptables from the Asterisk server:
Chain INPUT (policy DROP 1424 packets, 114K bytes)
 pkts bytes target     prot opt in     out     source               destination
 674K  137M ACCEPT     all  --  any    any     anywhere             anywhere            state RELATED,ESTABLISHED
   50  2978 ACCEPT     all  --  lo     any     anywhere             anywhere
    0     0 ACCEPT     tcp  --  any    any     192.168.123.0/24     static-70-22-124-75.bltmmd.east.verizon.net
   11 12117 ACCEPT     udp  --  any    any     anywhere             anywhere            udp dpt:sip
 6208 1238K ACCEPT     udp  --  any    any     anywhere             anywhere            udp dpts:ndmp:dnp
  932 63624 ACCEPT     all  --  eth1   any     anywhere             anywhere

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain OUTPUT (policy ACCEPT 675K packets, 154M bytes)
 pkts bytes target     prot opt in     out     source               destination


Thanks
-Dimitry
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Author

Commented:
I changed all the phones gateway to 172.16.2.2 and it worked but I was wondering if I could have put in a forward route in the asterisk server to do the same thing?

Thanks
-Dimitry

Commented:
what kind of switch do you have connected? if you can ping the server from the local lan put not the phones it seems like you have switch issues.  it looks like trunking issues.

Author

Commented:
It is just a regular non-managed switch.
system administrator
Top Expert 2007
Commented:
> The problem I am having is I cannot ping the phones from my locallan(192.168.123.0)

that's because your LAN's default GW is not an Asterisk but sonicwall... As alternate approach (without chaning default GW) is to add static route to 172.16.2.0/24 net to all LAN machines to point to Asterisk server.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial