Solved

PPTP and VPN not working for remote offices

Posted on 2013-06-29
4
338 Views
Last Modified: 2013-07-02
We are trying to route voice traffic, which we have setup as option 150 from remote offices to a centralized public IP that hosts the UC and all other remote office traffic besides WWW traffic (which we just have it go to outside world) to a different public IP address that allows access to the corporate network.  The web and data traffic work fine, but the VOIP will not properly work.  I have enclosed the config
 
172.20.0.0 is voice traffic
192.168.0.0 is data traffic

Thank you

remote-offfice-config.txt
0
Comment
Question by:David_Blumberg
  • 2
  • 2
4 Comments
 
LVL 17

Expert Comment

by:MAG03
ID: 39286966
From the look of it you have the same IP subnet at the remote office and at the HQ office for VOIP. Is that so?  If yes, the problem is that the phones think they are directly connected to the UC gateway server so they do not send traffic to the default gateway so it never goes over the VPN.  You would need to set up the remote office VOIP on a different subnet.

Another possibility is you could use proxy arp but this complicates the configuration unnecessarily and also it can cause instability.
0
 
LVL 1

Author Comment

by:David_Blumberg
ID: 39286988
Would this work:

Data
192.168.1.x for hq
192.168.x.y for remote offices (x different for each office)

Voice
172.20.10.x for hq
172.20.x.y for remote offices (x different for each office)

And if so what would the acl need to be changed to.  thank you
0
 
LVL 17

Accepted Solution

by:
MAG03 earned 500 total points
ID: 39287007
You said data works so nothing needs to be changed there as they addresses are on different subnets.

for VOIP the ACL would look something like this when configured at the remote office:
access-list 110 permit ip 172.20.11.0 0.0.0.255 172.20.10.0 0.0.0.255
0
 
LVL 1

Author Comment

by:David_Blumberg
ID: 39288881
I will check this and get back to you.  Thanks
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Tired of waiting for your show or movie to load?  Are buffering issues a constant problem with your internet connection?  Check this article out to see if these simple adjustments are the solution for you.
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now