We have a Cisco 887 at a Satellite office which has an IPSEC VPN back to head office which is a Juniper SRX. We need connectivity from the satellite office to the head office for an internal SIP trunk.
The satellite PBX is routed outbound via a different internet connection to the rest of the internet traffic at the Satellite office, it also has static nat for some SIP sessions.
The two default gateways are for example.. Data: 10.10.10.1 Voice: 22.214.171.124
ip nat inside source static 172.31.100.250 interface Vlan11 (Interface Vlan11 is in the 126.96.36.199 range)
When I change this following a guide online to exempt the traffic from NAT for the VPN, it allows the VPN to work but breaks the upstream provider SIP trunk.
Once I change this I can see in the nat translations table that the internal address changes and the SIP trunks stop working. Is there a way to keep internal address as the 188.8.131.52 network?
udp 184.108.40.206:5060 172.31.100.250:5060 220.127.116.11:5060 18.104.22.168:5060
udp 10.10.10.1:1026 172.31.100.250:5060 22.214.171.124:5060 126.96.36.199:5060