GOLD: VPN - H323 for my remote office IP phones stopped working after 1.971 was automatically installed last night
Saw that ICMP Ping was turned off on most interfaces, turned it on on internal networks.
Remote office is connecting to main office via two way VPN (GOLD to GOLD).
Ping/RDP still does not work from main net to remote net
NAT Pasthrough for H323 is still on.
Have not rebooted yet ....
Any ideas?
Rgds,
Trond
-
NBNB! FIXED: "Workaround" that probably should hav been used from the start. Please add to "best practice" of setting up Firewalla as a multioffice network?
Initiating the VPN tunnel from the main office to the remote office allows the main office to see all devices in the remote office without any NAT. Adding a rule that allows the devices in remote office to access main office resolves the ping/RDP in that direction. All phones in local main office register with 10.0.0.x and all phones register in remote office register with 10.0.1.x.
(Fire!!)walla!!!!!NBNBNB! If you have "old" Allow rules that allow network traffic from VPN tunnes "initiated the other direction, from remote office" (from a tunnel that is established from remote office.) The rule does not work (with the VPN initiated from opposite direction, just check with PING). Delete the rule and make the same rule a new.
Please sign in to leave a comment.
Comments
2 comments