Support
Community

I won't have a chance to try those suggestions until this evening. I can't knock them offline so I have to wait until everyone in that office leaves for the day. If I decide to get rid of the Sonicwall and use the Netvanta 7100 as the router, I'll still have to configure a VPN tunnel to our corporate office Sonicwall. Is there a definitive guide to configuring VPN tunnel between the Netvanta and Sonicwall? I've looked through the options but have not messed with them yet. I'll need to bypass the Sonicwall to configure the VPN on the 7100.

Thanks. I'll check out both of those. I'll be digging into this more this evening or tomorrow. I tried to work on it last week but they worked late the only day I was available.

Historically we have had very poor luck with VoIP behind Sonicwalls, and double NAT is asking for trouble.  If you have sufficient public IPs or ideally a /30 with a routed block behind it, I'd use the 7100 as the edge router and create a public interface for the Sonicwall behind the 7100.  Now the 7100 can handle QoS, etc.

Use the 7100 to NAT your voice VLAN directly.  Have the Sonicwall deal with VPNs and antivirus to your data VLAN.

You may want to firewall the voice VLAN on the 7100 from general web surfing to prevent a computer that "accidentally" lands on the voice VLAN from bypassing the Sonicwall antivirus.

I am now able to send/receive calls with the Adtran behind the Sonicwall. I'm using the Adtran basically as a switch and passing all DHCP requests to the Sonicwall. I am having one small issue though. I have the WAN interface configured with a public IP and it's plugged directly into my ISP's router. I have a route defined on the adtran for traffic from it to use next hop of x.x.x.233 which is my ISP's router. My ISP did a packet capture and my voice traffic is still traversing over the Sonicwall. I would hope to send all voice traffic over the WAN then lock it down to receive only traffic from my ISP's controller. Any idea on why this is the case? The phones are set to use the Sonicwall as the default gateway. Could that have something to do with it?

I'll readily admit that I'm not a networking person. I can set up basic networks, wireless bridges and the like but when it gets into advanced NAT and routing, I'm lost.

I could not use the Adtran as the edge router. I'm integrating this into a network and using existing network cabling. The PC's will be plugged into the switch port of the phone so I had to leave the Adtran behind the Sonicwall. This network has a total of 50 nodes, including phones, so I'm not too concerned with VLAN.

sasiki wrote: I am now able to send/receive calls with the Adtran behind the Sonicwall. I'm using the Adtran basically as a switch and passing all DHCP requests to the Sonicwall. I am having one small issue though. I have the WAN interface configured with a public IP and it's plugged directly into my ISP's router. I have a route defined on the adtran for traffic from it to use next hop of x.x.x.233 which is my ISP's router. My ISP did a packet capture and my voice traffic is still traversing over the Sonicwall. I would hope to send all voice traffic over the WAN then lock it down to receive only traffic from my ISP's controller. Any idea on why this is the case? The phones are set to use the Sonicwall as the default gateway. Could that have something to do with it?

Yes, absolutely.  If the phones have the Adtran's IP as the gateway they'll traverse the Adtran.  

I could not use the Adtran as the edge router. I'm integrating this into a network and using existing network cabling. The PC's will be plugged into the switch port of the phone so I had to leave the Adtran behind the Sonicwall. This network has a total of 50 nodes, including phones, so I'm not too concerned with VLAN.

You'll want to use VLANs.  Best practice for QoS, and essential if the phones themselves will have a different policy than the PCs behind them.  Create a voice VLAN, have the phones use it with DHCP from the Adtran.  Use a different native VLAN for data, and the computers including those behind the phones should be on that, with the Sonicwall as their gateway.

Use different RFC1918 subnets for voice and data. 

I was able to set up the VLAN's and have VoIP traffic traverse the Adtran while PC traffic traversed VLAN1. However, I still had 1 way audio issue (I couldn't hear the incoming caller). The fix for that was enabling Simple Remote Phone. I don't feel like I should have to enable that though when the PBX is handling all routing and data for the IP sets. I feel like something in the Adtran is not quite right. Any ideas on a configuration change I can make so I don't have to use that option?

filename is adtran7100dip.txt

VPN is fine as incomplete. I ended up not having to go that route. I'll get that cleaned up though. I'll also try these suggested changes. I will let you know if this takes care of it.

That did not seem to fix the problem. I re-enabled simple remote phone and it worked. I'm uploading the new config called adtran7100dip2.txt. This has simple remote phone disabled. My test extension is 242 if you want to look at the config of the set. I'm new to AOS so I hope I edited the config properly. It appears to have reflected the changes you suggested.

Remove duplicates did not work. I'm uploading 3 files.. current config, test call with simple remote enabled which does work, then simple remote disabled which has 1 way voice. They cannot hear me when i call but I can hear them. file names are "FW simple remote disabled.txt", "FW simple remote enabled.txt" and "FW config.txt"