Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

9608 VPN

Status
Not open for further replies.
critchey

critchey

IS-IT--Management
Nov 17, 2015
1,793
US
I have a 9608 phone VPN'ing back to a R8.1(95) system that is getting stuck on discovering. The phone is successfully navigating the VPN tunnel, connecting, and I even see the traffic from the phone and the system responding to the request in monitor. However, I just keep seeing the phone asking and the IPO responding but it sure seems like the phone is not getting the response from the IPO.

Sonicwall firewall is used for the VPN, and of course, the Sonicwall people are blaming the phone system... I can't for the life of me think of a way this could be the IPO causing the issue. I do know the IPO can NOT ping the phone when it is VPN'ed but the Sonicwall can ping the phone. It is weird the phone is getting traffic from the phone without being able to ping it. I see in monitor the IPO is using port 1719 but the phone is using ports in the 49000 range... so my best guess is port 1719 is being blocked or misrouted.

If anyone has anything I can try via the IPO I will be happy to try. If anyone has run into this issue and has figured it out I would love some help here.

The truth is just an excuse for lack of imagination.
 
Sort by date Sort by votes
What are your IP routes set to? That's where I would start.

- Qz
 
Upvote 0 Downvote
Have a default IP route:
IP 0.0.0.0
Subnet 0.0.0.0
Gateway 10.10.10.1 (Sonicwall internal IP)
Destination LAN2 (they had issues with LAN port so using WAN port)

Since both the phone's IP and the IPO IP are on the same subnet of 10.10.10.X I wouldn't think an IP route would even matter but this should work.

The truth is just an excuse for lack of imagination.
 
Upvote 0 Downvote
The VPN phone should not be on the same network.
The IPO will not send the packages to the router as it thinks it is local.

Make the VPN range for the phone 10.10.11.0 then you should be good

Joe
FHandw, ACSS, ACIS

"Dew knot truss yore Spell Cheque
 
Upvote 0 Downvote
@Westi thank you that makes perfect sense to me. I will ask them to change the subnet and see if that fixes the issue and report back.

The truth is just an excuse for lack of imagination.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Opie the Phoneman
  • Question
9608 G will not clear
Replies
3
Views
210
lleeNC
lleeNC
Rhinorhino
  • Locked
  • Question
9608 color sets? 4
Replies
7
Views
1K
Shaun E
Shaun E
tnestel
  • Locked
  • Question
9608 login error 1
Replies
3
Views
1K
sizbut
sizbut
WirSysPlus
  • Question
VPN hardware
Replies
0
Views
137
WirSysPlus
WirSysPlus
AldoLT
  • Locked
VPN J179
Replies
1
Views
653
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top