Solved

AllWorx Remote Phones and ASA configuration

Posted on 2011-09-30
4
2,197 Views
Last Modified: 2012-05-12
I have an AllWorx 48x controller in a main office with a public IP address on the wAN port  in DMZ/Firewall mode.

I have another location that I am attempting to use the AllWorx 9212 IP phones.

I can get the registration fine without any changes to the ASA 5510 at theremote phone site.
Calls can be generated and received, however there is NO AUDIO in either direction.

Please assist me with using the ASDM tool to modify my current configuration.
I have attempted to use a separate Public IP address for a static NAT and ACL statements that work as afar as accessing the phones web server, but the audio won't work even when I restrict the RTP port range for the phone configuration and set it statically in ASA.

I want to be able to use minimal configuration on the ASA to support multiple remote phones.

Please help.
From AllWorx site:
The following ports must be opened on your remote firewall to allow traffic from the WAN to the LAN IP address of your Allworx Phone:

•UDP port 2088 (BLF Traffic)
•UDP port 5060 (sip registration)
•UDP ports 16384 to 16393 (RTP media streams-Audio)
0
Comment
Question by:NetManaged
  • 2
  • 2
4 Comments
 
LVL 29

Accepted Solution

by:
Alan Huseyin Kayahan earned 500 total points
ID: 36899227
Whenever NAT is involved, VOIP is always problematic. Most probably, everything will work if you somehow manage to assign the public IP directly to Allworks controller.

And the following may help.
http://www.ccietalk.com/2009/08/03/cisco-asa-inspection-issues
0
 

Author Comment

by:NetManaged
ID: 36901251
MrHusy,

     I stated in my original question,"I have an AllWorx 48x controller in a main office with a public IP address on the WAN port  in DMZ/Firewall mode."
0
 

Author Comment

by:NetManaged
ID: 36913915
MrHusy, Points awarded for the link. That was what I needed to do.
Disable VoIP-related inspections. Life is good again.
0
 
LVL 29

Expert Comment

by:Alan Huseyin Kayahan
ID: 36916281
Great =], I interpreted the question as if the public IP was at firewall's interface and posted the link just incase if I misinterpreted.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Configuring routing and ACL for Cisco 891 router 15 59
Palo Alto Networks: Truly No Hit Count? 2 44
Connecting a New Subnet to Network 4 29
cisco 2800 cannot ping lan 4 21
I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
Hey there Heard about jingle, the add on for XMPP that enables point to point audio between two XMPP clients. No server config necessary. Actually quite a cool feature. However, how good is it if you can not use those voice capabilities to do a P…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question