Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

UCP100 Multisite via VPN

Status
Not open for further replies.

Paulburton26

IS-IT--Management
May 16, 2018
34
GB
Hi all,

This follows on from my previous posts, but for clarity I thought it was easier to start again

We have upgraded our MFIM to a UCP100

We have 20+ sites, 50% have phones off the UCP at head office, their lines come into the UCP via SIP

Head Office has the UCP and a VPN to each of the 20 sites

Sites can received calls from head office, and incoming SIP calls perfectly

Sites can't call site-to-site as we don't have VPN between sites, only to head office (sorry I have said all this before)

UCP IP - 200.0.1.150

Site 1 - 200.0.4.1

Site 2 - 200.0.7.1


So when Site 1 wants to call Site 2 - they can't, call sets up using the system, but no audio when handset lifted

Fully understand the system wants to setup the call and then the handsets talk to each other via IP - not possible in our setup

So, our supplier has spoken to Pragma, who say (as you guys have also) that it is possible, just set the phones to 'remote' - we are using 8012E phones (about 100 of them) they do not have a 'local remote' option, just local or remote

Anyway, tried everything, and can't get it to work, remote, local, same lan as MFIM yes and no

Have tried different IP's in the board base for the sequence number, still nothing

So the system comes with 1-6 VOIP channels, we have two VOIM24's, the first 6 channels of one are set to VOIP also, so we have 12 channels for internal calls,

The problem is - as we grow, they all want to call each other more, there must be a way to get this working

The VPN is fully open, we don't need to port forward, everything is accessible, it just doesn't work

I am meeting our supplier onsite again next week, to have another go, but would really appreciate some help

Is there firmware upgrades for the 8012E phones that gives local remote as an option, is this the problem ?

Thanks as ever,


Paul

 
Hi Paul

what the issue is once the call is setup the UCP100 is instructing the phones to transmit data directly to each other.

i have spoken to pragma about this but they have not got an answer for it

a shot in the dark can you have a look at what Station IP Attributes PGM122 is set to by default its set to enable try setting it to Disable

and try it

If not you will have to setup IP routing tables on your routers to route all the subnets of the remote sites via head office

so you can ping from site to site
 
Hi Eddie,

Thanks for your quick reply

Pragma just told us to setup port forwarding, and the phones to remote,

I have checked PGM122 - and they are all set to 'Direct IP Call - Enabled'

I will try disabling it next week when onsite, and make a few test calls

It's title sounds hopeful

I am told we can't do that re the routing table - that was one of the things I looked at, apparently our firewall / VPN server will not know what to do with the data

Another option - although not preferred, we have a free external IP, so we may try putting a router on it, and setting that as the default gateway on the UCP, then port forwarding in, and setting the remote phones to ignore the VPN and just look at the external IP address

Really value your input,

Paul
 
Although I am yet to try Eddie's suggestion re PGM122 - looking online I don't think this is what this option controls, it's something to do with dialing an extension via it's IP address and not extension number, not sure why you would want too

I am going to be back at a remote site on Wednesday next week, as impossible to test from our head office where I am based, as their calls to the sites are fine,

Thanks,

Paul
 
Hi Paul

if you are going down the remote phone option just make sure you have plenty of VoIP resources as it will use 2 when a call is made extension to extension

what routers are you using at head office and the remote sites

 
Hi Paul

Local remote mode is when you set the phone to local, and then the option "same LAN as MFIM" becomes available. Setting NO will put the phone in local remote mode.

You could try setting some phones to remote mode and make the MFIM IP the external IP of your router. It does use VOIM resources put will probably work.
 
Hi all,

Sorry for the slow reply

Tried Eddie's PGM122 thought, didn't make any difference

Remote sites are using Draytek 2860's on VDSL

Head office we have a Storm Shield firewall, on our lease line

We have 2 x VOIM24's on the UCP, so with the 6 built in ports on the UCP, we also used the first 6 ports on the first VOIM so we have 12 ports for VOIP

I have asked our networking support provider about routing site to site via the head office VPN, they are coming back to me but last time I asked said not possible

Anyway, had our LG provider out on Wednesday, and got Pragma on the phone for a long call, also connected via Teamviewer as they can't understand why it doesn't work, they have taken some traces from the UCP and emailed to LG to comment.

I am sure it would work with another Draytek in front of the phone system with port forwarding, but when we have a VPN already in place, we shouldn't need to

What was discovered was that if we had one phone as 'remote' that called another site that was 'local' it did work, but if they are both set to 'remote' then no audio - Pragma don't know why

Thanks for the pointers


Paul
 
Hi Paul


can you ping from a PC on subnet 200.0.4.1/24 to a PC on subnet 200.0.7.1/24 and back the other way as if you can't do that then it will never work like you have it setup

if you have access to the draytek management console there may be some things you can set up on the draytek VPNs i have 3 drayteks i can setup and test some routing
 
Morning Eddie,

No, I can't ping from 200.0.4.x to 200.0.7.x - our networking support people are looking at the Draytek configuration to see if we can route it via the VPN to head office

I appreciate when they are set as local, unless I can ping this will not work

However, even when they are set as remote, they still don't work

LG came back telling us to add a setting under the 'Zone' sub menu, this made no difference, so back with them


Paul
 
Hi Paul

even if they are set to Remote or remote-local it still won't work because you are not connecting to the public IP of the UCP as the RTP packets are still being sent directly between the phones

as for the ZONE data i did see some thing about RTP relay which is what i think needs to be enabled so the RTP packets are relayed via the UCP & VOIMs

 
Hi Eddie,

But if they are set as remote, why would it matter if it was the public or internal IP address ? - surely the remote says route all call traffic via the UCP and not handset to handset

This is the setting Pragma told us to add - 2401 (the sequence number the UCP)

1_m3qh0u.jpg


Paul
 
Hi Paul

If the system sees the handset in remote mode it will modify the sip packets to insert the IP that is set in the 102 & 132 (firewall address) as the address not the internal IP of the UCP or VIOM as it would need to do this to get remote handsets to work

the local-remote setting doesn't do this

what you could try just to see if it works is to set the the firewall address/RTP firewall in 102 & 132 to the same as the IP of the UCP but this is just for testing this will only work if using the internal channels of the UCP to test





 
Hi Paul

as for the Zone stuff set remote site phones to local-remote and put them in a different Zone and set that Zone to Force Relay
 
Hi Eddie,

We are using 8000 series phones (mainly 8012E) they don't have a 'local-remote' option, only local or remote


Paul
 
Hi Eddie,

Yes, that is one of the options for sure, I can modify the phones from the phone web interface, as they are all 50+ miles away


Paul
 
how is the leased line set up . i assume you have a Cisco on the end of it feeding your storm firewall . it will have more than one out put on it

have you thought about getting that second port on that cisco a different ip address then connecting a draytek to that . you can set up your port forwarding . bang all your phones into remote mode and your problem will be cured .

you will need to make sure your port forward correctly to your multiple voims.

 
All all,

To update you on this saga

So, we gave up trying to use our VPN, put a Draytek on our lease line on a new IP address, port forwarded on the Draytek to the UCP, and changed all 80+ remote phones (via their web interface) to talk to the UCP via it's WAN port

All phones set to 'Remote' and 'Same LAN as MFIM - No'

This fixed the site to site calls, and I thought everything was sorted

We have about 30+ SIP lines inbound,

We used the 6 ports on the UCP for VOIP calls, then dedicated the first 6 channels of the VOIM to VOIP also, so we could have 12 concurrent calls

However, this doesn't work, it only allows you to use the first 6 in the UCP

Pragma then come back with a 31 page document of things you need to change to get this working

I am starting to wish we had gone for a hosted solution, as I wouldn't of had all these problems, but we need the TAPI facility as we run software on our desktops

Anyone any thoughts ? - I have attached the huge document from Pragma

I thought this would be so simple,


Paul
 
 https://files.engineering.com/getfile.aspx?folder=54016a4f-b864-4dc7-830b-35d00895f481&file=WANU_Setup_Unified_V3_(2)_(1).docx
who uses wanus any more your draytek will do what you need . all the wanu is doing is port forwarding in short! .

in short on the draytek you will need to set up some port forwards to each voim 24 so the speech ports dont over lap .

when you set up each voim24 you will need to populate it with speech ports as in default they will clash . if you put the first port in it will do it it self .

so do the first one . let it populate the ports it self ( it will do this when you put the first port number in ) then do the second one on a different port range .


once you have done this take note of the ports and do the port forwarding in the draytek to each internal address of the voim 24s .

you have a total of what 54 voim channels .

6 on board . and 2 x 24 voim cards .

you say you have about 30 + sip trunks how many trunks (concurrent calls ) do you actually have/want ?

when i mean concurrent calls i mean calls to the outside world ie a mobile etc . not internal calls between remote phones and other phones.

you need to work out the maths against the demand etc . as when each remote phone makes a call regardless of the fact if its a internal call it will pick up a voim channel .

phones on the internal network in local mode wont do this . they will only use a voim channel when breaking out to the pstn network via your sip trunks .

again if a remote phone picks up a sip trunk be using a voim channel to get to the system and then another voim channel to get to the pstn network.

if you really are struggling to get this to work pragma will do installs/call outs for a fee :p







 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top