GOLD: VPN - One SMB One IP Telephone central H.323 - Ping and RDB between locations
I have a small business with two locations (Main Office and Remote office) connected by two Firewalla GOLD via VPN (Site to Site only set up un remote office GOLD). I have one Innovaphone AG SIP IP telephone central at main office and one SQL server.
Main Office: 10.0.0.x /24 (Gold 10.0.0.1)
Remote VPN Office: 10.0.1.x/24 (Gold 10.0.1.1)
How do I ensure that both nets know which gateway is default to the other (without setting any static routes on the PCs)?
1. My IP Phone central in main office only sees one IP address (ie. the GW address 10.0.1.1) for all my phones in my remote office, and people cannot call inn to remote office.
FIX: Open Settings -> Advanced -> Configurations -> NAT Passthrough -> Enable H323 (or SIP). Worked with 1.970 (not with 1.971)
BEST FIX: Create/Initiate the VPN from the main office to the remote office. (not vica versa, then NAT etc. is not needed necause main office see all the devices in remote office with actual IP)
2. Ping and RDP from main office to remote office does not work (it does from remote to main). All IP adresses seem to be NAT-ed to Remote Office GW
FIX: Be sure to create the VPN from the main office with servers an H.323 / SIP phone central to remote office. NB! NB! Make a rule from "main office" to allow traffic from remote office to ek. all devices in main office..
Rgds,
Trond
-
I connected the VPN Client via "Create VPN Connection" on the one Gold (in remote office) with "Site to Site VPN". -- to me that sounds like a two way connection. So I have only done the Client VPN setup on the remote location and not in the main office.
NB! Connecting from main office to remote office fixed the problem. (Turning the VPN tunnel). Adding a rule to make the remote office connect to devices in main office.
Please sign in to leave a comment.
Comments
3 comments