Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2568
  • Last Modified:

Avaya Softphone not connecting through Juniper SSG 140 VPN

Hi,

I have Avaya G450 gateway and i am using my H.323 terminal, Avaya softphone and avaya one x communicator successfully in the my own network (within the LAN).

We have set up L2TP VPN for connecting to the internal network from the outside. I am trying to use the softphone through L2TP VPN, i am able to reach (ping the server) but the softphone is not registering.

Can anybody tell me how i can solve this issue? which ports i need to open in the Juniper and how?
0
tayyabq8
Asked:
tayyabq8
  • 6
  • 2
  • 2
  • +2
1 Solution
 
Kent WSr. Network / Systems AdminCommented:
Have you turned on L2TP VPN Passthrough on the router at the remote location, home / office, or wherever you are VPNing in from?
0
 
abhijitmdpCommented:
I also faced the same problem once. I'll need some time to search on my knowledge.
0
 
Sanga CollinsSystems AdminCommented:
Firs thins to do is disable SIP ALG in the juniper. The second thing to do is enable source based NAT on the outgoing policy for the VOIP traffic.
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
tayyabq8Author Commented:
@mugojava:L2TP VPN Passthrough is turned on.

@abhijitmdp:: take your time and let me know.

@sangamc:SIP ALG in the junipep is disabled. Could you pls explain how i can make outgoing policy for the VoIP and enable source based NAT on it?
0
 
Sanga CollinsSystems AdminCommented:
on which ever policy is sending outgoing traffic for VOIP, go to the advanced section and put a check mark on 'source translation' and set DIP to 'none (use egress interface ip)'
0
 
tayyabq8Author Commented:
tried still did not worked...
0
 
tayyabq8Author Commented:
with some luck i am able to register to the server and able to make some test calls.

I am facing a voice issue, if i am calling from my softphone to any number, the other person is able to hear me clearly but i am not able to hear him or any voice.

The policy from the trust to untrust for the VOIP traffic is already there.

Any ideas?
0
 
ksaikiCommented:
Have you try to disable H323 ALG?  Juniper device has some known issue on Avaya VoIP.
If this does not help try to adjust mss size using 'set flow tcp-mss' command.  
0
 
abhijitmdpCommented:
For further clarification please refer following table of IP Telephony Deployment Guide

 IP Station 2

 IP Station 2IP-Station2.jpg
0
 
tayyabq8Author Commented:
hi,

All the ports are already opened in the Juniper SSG 140 according to the Avaya guide. (Do i need to open some ports in the Avaya as well?)

Following is the procedure which i am following:

1- Connect to the VPN and after connecting i am able to reach/ping  my G450 Avaya GW and network.
2- I am using Avaya one-x 5.2 version for connecting to the PBx through VPN (I also tried Avaya IP softphone but same result)
3- To register to my PBx through VPN i have to put my trust interface to route mode. (I have to use the NAT mode for trust zone in order my internet to work, because the ADSL connection is configured in the juniper as well), please advise how i can use the route mode for that PBx purpose only, do i need to create another trust zone ?
4-Once the trusted interface is set to route mode (the internet will stop work) and i am able to connect to my PBx from outside using VPN.
6- After connecting i am able to dial the calls to the outside + my internal number extension, the other person can hear my voice clearly but i can not hear anybody.

Please advise how i can troubleshoot this issue.

Thanks.
0
 
tayyabq8Author Commented:
I called the support team and they did some configuration changes in the avaya GW and now the issue is resolved.
0
 
tayyabq8Author Commented:
Avaya Support team fixed the issue.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 6
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now