Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Avaya 9650c over existing sonicwall site to site vpn

Status
Not open for further replies.
cwhite432

cwhite432

IS-IT--Management
Jan 26, 2012
35
US
I have a multi site setup with one IP Office phone system at the main office. Phones at branch offices connect to main office over existing site to site VPNs setup with Sonicwall TZ series firewalls. Everything is working fine for most phones. I tried replacing 1600 series phone with a 9650c (and a 9608) and the phones would seem to connect to the phone system. Phone even did a firmware upgrade from phone system. When I try to log in a user I get an error and the phone won't login. Phone can login to system with no issues when setup at the main office. The only difference is the vpn and IP subnet of the remote location. Other 1600 phones at the remote office work fine over the vpn. Is there something different about the 9600 phones that would be blocked for some reason?
 
Sort by date Sort by votes
Subnet will not matter so it will be the VPN/Router blocking something, what error do you actually get?

 
Upvote 0 Downvote
I can't remember exactly what it said and I'm not at the location currently. It didn't give an error code or anything and for the life of me I can't remember what it actually said. It was just odd. The vpn is set to allow all traffic to and from both sites. Address information is setup statically in the phones and I just mirrored address info set on the 1600 phone that currently works. Just weird that other models work fine but a 9600 won't.
 
Upvote 0 Downvote
It is odd, but Sonicwalls are known for being touchy/trigger happy, there are a few settings on them that can be turned off that can interfere that aren't obvious. Having not used one for ages I can't remember the exact names but basically any H323 inspect maps and/or ALGs/helpers etc need to be off :)

 
Upvote 0 Downvote
The only thing I can find on the sonicwall that would fall under that category that is enabled is "Enable H.323 Transformations" That is turned on. I can try and turn it off on both ends and see if that makes a difference. Is the action of the phone logging in considered an H.323 connection? Instinct tells me that it's not but I've been wrong before... one time. jk
 
Upvote 0 Downvote
Just to confirm
you are not programming he VPN options in the 96XX handset?
(you have a hardware VPN so the phone should be configured as if it was on a std network)

2nd always disable any Voip assistance features in routers & firewalls, they do nothing except break functionality!

A Maintenance contract is essential, not a Luxury.
Do things on the cheap & it will cost you dear
 
Upvote 0 Downvote
Yes that is correct. The VPN is from Sonicwall to Sonicwall with the phone having a private IP in the remote subnet. I will be onsite next week and will try again disabling the "Enable H.323 Transformations". Thanks
 
Upvote 0 Downvote
I was finally able to make it onsite and disabling the "Enable H.323 Transformations" fixed the issue. Thanks for the help.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

infonaut
  • Question
Is Avaya's support site down?
Replies
3
Views
297
infonaut
infonaut
dsm600rr
  • Locked
  • Question
Avaya J100 over Site-to-Site VPN, "SIP Proxy List is Empty" 2
Replies
1
Views
476
dsm600rr
dsm600rr
myalias09
  • Question
Is Avaya's site down? Avaya.com states "We're just fine-tuning our connection"
Replies
4
Views
301
infonaut
infonaut
pontim
  • Locked
  • Question
Avaya SBC delivering Certificate to j129 phones over port 443
Replies
5
Views
427
derfloh
derfloh
Rhinorhino
  • Locked
  • Question
TekTips site redesign? 26
2
Replies
35
Views
5K
teletechman
teletechman

Part and Inventory Search

Sponsor

Back
Top