[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Watchguard Firewall/Router and hosted VoIP (8x8)

Posted on 2013-01-28
2
Medium Priority
?
2,839 Views
Last Modified: 2013-02-05
We have a site which has a 10Mb (up and down) circuit using a Watchguard x330 running 11.6.1 software.

We are using Virtual Office solution from 8x8 which is a hosted SIP PBX solution.

Problem is that users complain of call quality issues.

At the moment I have setup 'Traffic Management' which uses a firewall rule and allows you to allocate/dedicate bandwidth, so I've set aside 512Kbps (10 users at site, maybe 6 calls active at once top) so this should be totally overkill.

8x8 says that if I can't disable SPI on the firewall, then they recommend a second firewall/gateway that doesn't use SPI, and point all phones to it.  I can do that, but I'd like to investigate further before we go that route.

I've noticed also that on Watchguard there is a SIP ALG which is equivalent to a Cisco Fixup Protocol, but I think that just facilitates opening of ports, not prioritizing traffic.

Anyone have a Watchguard device working well with SIP protocol (8x8 is one, Skype also uses SIP)

Your help is appreciated.
0
Comment
Question by:ITDharam
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 37

Accepted Solution

by:
ArneLovius earned 2000 total points
ID: 38830871
You are correct about the ALG

VoIP call quality is frequently "fun". SPI on your Watchguard will add a small amount of latency, but this should not affect call quality, jitter and packet loss are the killers of call quality.

I would suggest using a span/monitor port on your switch and Wireshark to capture some calls and listen to them. You might find voipmonitor easier to use.

I might also try putting a phone outside the Watchguard on a public IP address, limiting Watchguard traffic to n-512k (plenty of bandwidth) and seeing if the call quality improves.

I would run pathping/mtr to your ITSP and see how many hops and how many carriers the traffic goes over, although you might be applying QoS to your part of the link, QoS is usually not honored by ISP peers.

You should also confirm the codec that your ITSP is using, just in case they have put you on a 9.6k codec...
0
 
LVL 8

Author Closing Comment

by:ITDharam
ID: 38857306
Great info
0

Featured Post

Tech or Treat!

Submit an article about your scariest tech experience—and the solution—and you’ll be automatically entered to win one of 4 fantastic tech gadgets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently purchased a Bluetooth headset called the Music Jogger (model BSH10). The control buttons on it look like this: One of my goals is to use it as the microphone and speakers for Skype calls. In that respect, it works well. However, I …
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question