Thanks , Trace .
on one site we are trying to allow someone to come in remotely to the Maintenance port on a Panasonic TDA 50 and upgrade the software on the Cell stations so they can work with newer Handsets . IT guy had me change the address on the TDA to the public address , that didnt work (I couldn't see how it was supposed to ). the programmer suggested a VPN , IT guy has set one up and I've forwarded the info to the program guy so hopefully that will get that one done .
Second site is a NEC1100 Where I'm trying to set up 4 VOIP phones at a remote site . When I try to connect here at the office I get "no SIP server found . I talked to NTAC last week , I sent them my data base and they said it was all OK . I emailed their IT Guy wed but haven't heard back I'm going to give him a call shortly . Honestly there isn't that much programming on the NEC side and I've been though it a half dozen or so times .
they aren't using sonic-wall on this one its a "firebox"
Hey Skip,
I may have misunderstood what you said. If so I apologize, but from what I'm hearing, no, I can't see how that would work either unless the IT guy is moving the Panasonic to the front just long enough for the upgrades. Normally the Panasonic would get the private address, it would be programmed over port xxxx, and the Sonicwall would take any traffic to the public IP address over that port, X.X.X.X:xxxx and forward it to the private address, but you already know all of that. It sounds like this guy needs to use the wizard. I think it's called a web server wizard, not port forward. THEN he wants to either turn off the rule when you're done, or restrict that rule to a white list!
As for the SL1100, I personally don't normally like to run the remote IP phones over the VPN. It's just one more thing that can break, and it requires encrypting the traffic so it adds to the overhead. Additionally, I like to make it so that the person can take the IP phone with them and use it at a random location. VPN prohibits that. Again though, I do restrict the IPs to a given white list so it's not open for other people to use. With a SW you can't set up a VPN between two locations unless both are running SW, or you're using a VPN client on a computer. It's been decades since I used Firebox, so I'd be weak there. However, I'll add a few things that might be of use in case they apply to the Firebox as well.
On SW the IP phone will work fine when you first set it up and then later it'll lose its registration. You'll get signal, but no audio. I go in and expand the UDP Connection Timeout to 120. On the SW there is also a Global UDP setting under Flood Protection. I don't change that one as it can cause overhead issues. That's half the equation. The other half is to go into the SL under 15-05-47 & 48 and lower the time from 180 to 60.
Also, I know NEC has looked at your DB, but if you're getting signaling, but no audio, make sure that 10-12-07 has the public IP of the location where the cabinet resides, and the private address of the DB is in 10-12-09.
I hope this helps.
