When the phone on the remote side powers up, it registers with the PBX. The traffic appears to be heading towards the PBX on the main office side. I have done packet capture at the Sonicwall, the pfSense unit, and the PBX. Clearly I'm looking in the wrong places and after a few days of poking at this I think I need some fresh eyes to see what I'm missing. If anyone has any insight I would greatly appreciate it. I have tested each of the settings above and tested with them in the opposite states although I haven't tested all of the possible combinations. I've been perusing packet capture data, but I'm either not finding anything or I'm not smart enough to see what I need to find.
If I attempt to call a main office extension from the remote office VoIP set, nothing happens. All of this works only from the main office to the remote office. For my purposes, inter-office calling should be sufficient for testing. As the PBX is still on the bench the FXO aren't connected so call testing isn't an option. I'm able to answer the call on the remote office LAN and audio works in both directions so RTP appears to be OK. I can make "in-office" calls from extensions on the main office LAN across the tunnel to the remote office phone. The VoIP set on the remote office side connects to the PBX and registers. I can access HTTP/HTTPS interfaces of devices on both sides, from either side. The IPSEC tunnel is set up as a site-to-site in the Sonicwall and seems to be functioning fine. I have a lab subnet in my office set up for testing that is 10.1.0.1/16. Main Office (a pfSense for bench purposes) There won't be any external VoIP connections or NAT to other providers required.
The PBX will be installed as part of this project and will use FXO to connect to pre-existing lines onsite. The idea was to have both LAN's here on the bench, set up IPSEC IKEv2 and configure the VoIP set to connect to the PBX, also here on the bench, along with the other VoIP sets destined for installation in the main office.
I'm pretty good with the subject matter, but inexperienced with Sonicwall. I have done many site-to-site VPN's that include VoIP using other firewalls. I configured the Netgate to act as the main office thinking that I will only have to change the Phase1 when I ship out the SOHOW. Since the new unit has to be shipped across the country, I set up the SOHOW in my office and created an IPSEC tunnel to a Netgate/pfSense unit that I had on hand. After all, and IPSEC tunnel is a simple matter right? Sonicwall's aren't something I have a lot of experience with but when they asked to put in a VoIP set for a remote employee, I figured using a 2nd SOHOW was a good option rather than make both ends something different. I have a new customer with a Sonicwall SOHOW in their office. I've been sifting through other discussions on VoIP via an IPSEC, both in the Sonicwall community and elsewhere, for the last few days but haven't found a solution for my issue yet. I feel like the answer is probably painfully obvious to someone with more Sonicwall experience than I have so here I am. This is a blatant duplication of a post that I've made elsewhere but I'm tearing my hair out without finding a solution.
0 kommentar(er)
