Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN issues 1

Status
Not open for further replies.
colec12

colec12

Technical User
Jul 28, 2011
124
US
We are currently using some soft phones to work remotely. Avaya 6.2 and Cisco any connect VPN. The issue is one way audio and we were told this was by design and this how the vpn works.
 
Sort by date Sort by votes
You were told wrong. I have ten's of thousands of users using softphone + Cisco VPN. Your issue is the UDP ports on page 1 of your network region form aren't open on your firewall.
 
Upvote 0 Downvote
Let me get this straight, someone told you that VPN is one-way? Hope that was not your network engineer.
I agree with “Phoneguy55”, this sounds like a port issue.
 
Upvote 0 Downvote
I've also run into the issue where traffic between endpoints can't route appropriately, rather than port configuration/allowance. Make sure that from the soft phone PC they can ping whatever other endpoint is involved in the call (DSP Resource, phone, gateway where PRIs land, etc.).
 
Upvote 0 Downvote
I ran into an issue with one-way audio between softphone endpoints and got around it by turning off IP shuffling. That could be something else you may see.
 
Upvote 0 Downvote
Typically, VPN tunnels by default do not allow packets to flow directly to another VPN tunnel. That will cause loss of audio if direct media is enabled.
 
Upvote 0 Downvote
This will likely come down to having to understand your firewall rules (work with your network engineers, not against them... even if they can't do the same) and understanding the ip-network-region configurations in your system.

Obviously, connection to PROCR or a CLAN (unpreferred) is needed for h323 registration. After that you need to understand where the RTP packets are flowing. Hopefully all your VPN endpoints are 'captured' by an IPNR meant for these people. Once you have them all grouped you can give them all rules such as no direct media, or direct media only to certain offices etc.

Also, troubleshooting the -now-... get a 1 way call up, do a "status station" and look at the media path. Screen shot that then work with your firewall people to establish that the path is valid for RTP packets. A list trace will also provide similiar data, but the status station during an active call will be a little easier to read.

 
Upvote 0 Downvote
Also, you MUST get rid of the h225 and h323 ALGs/layer 4 firewalls. They will cause problems almost always.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

mjm23
  • Locked
  • Question
cmsadm backup issues
Replies
0
Views
130
mjm23
mjm23
Juan_Moct
  • Locked
  • Question
AVAYA TN793CP PORTS ISSUES 1
Replies
1
Views
118
lopes1211
lopes1211
DTechNation
  • Locked
  • Question
Avaya Workplace Issues
Replies
1
Views
162
biglebowski
biglebowski
afig
  • Locked
  • Question
bm12 sidecars with 9611 issues
Replies
2
Views
104
afig
afig
Brandon Headley
  • Locked
  • Question
File sync issues
Replies
6
Views
250
AvayaTier3
AvayaTier3

Part and Inventory Search

Sponsor

Back
Top