We currently have a remote worker who uses citrix to access our networks. We would like to setup an IP Phone at his site but we're not sure how to implement it securely. We don't have SIP on the extranet so the user would need to VPN into our site. We have an NEC SV system.
What I am thinking is we can do a IPSec between our site and his home. His office is downstairs and his router is upstairs. His home is entirely wireless. Should we replace his router and setup IPSec to only route the IP Phone traffic?
We have also tried to use SSLVPN with a soft phone. However, it is not the same experience as with a real phone.
What would be the best way of handling this? Are there better alternatives?