Solved

PPTP and VPN not working for remote offices

Posted on 2013-06-29
4
336 Views
Last Modified: 2013-07-02
We are trying to route voice traffic, which we have setup as option 150 from remote offices to a centralized public IP that hosts the UC and all other remote office traffic besides WWW traffic (which we just have it go to outside world) to a different public IP address that allows access to the corporate network.  The web and data traffic work fine, but the VOIP will not properly work.  I have enclosed the config
 
172.20.0.0 is voice traffic
192.168.0.0 is data traffic

Thank you

remote-offfice-config.txt
0
Comment
Question by:David_Blumberg
  • 2
  • 2
4 Comments
 
LVL 17

Expert Comment

by:MAG03
ID: 39286966
From the look of it you have the same IP subnet at the remote office and at the HQ office for VOIP. Is that so?  If yes, the problem is that the phones think they are directly connected to the UC gateway server so they do not send traffic to the default gateway so it never goes over the VPN.  You would need to set up the remote office VOIP on a different subnet.

Another possibility is you could use proxy arp but this complicates the configuration unnecessarily and also it can cause instability.
0
 
LVL 1

Author Comment

by:David_Blumberg
ID: 39286988
Would this work:

Data
192.168.1.x for hq
192.168.x.y for remote offices (x different for each office)

Voice
172.20.10.x for hq
172.20.x.y for remote offices (x different for each office)

And if so what would the acl need to be changed to.  thank you
0
 
LVL 17

Accepted Solution

by:
MAG03 earned 500 total points
ID: 39287007
You said data works so nothing needs to be changed there as they addresses are on different subnets.

for VOIP the ACL would look something like this when configured at the remote office:
access-list 110 permit ip 172.20.11.0 0.0.0.255 172.20.10.0 0.0.0.255
0
 
LVL 1

Author Comment

by:David_Blumberg
ID: 39288881
I will check this and get back to you.  Thanks
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now