Jump to content
Vodia PBX forum
elatro

OpenVPN

Recommended Posts

After struggling for far to many days with NAT / STUN / SBC and all other things i could think of to make it possible to connect from remote offices into a centrally located snomone pbx i decided to implement OpenVPN.

 

I installed OpenVPN on the snomone server and followed the instructions on upgrading our 821 phone according to to the following post:

http://wiki.snom.com/Networking/Virtual_Private_Network_(VPN)

 

This works (almost) perfectly.

 

The VPN connection starts and the 821 phone is connected to the pbx like it is in the same LAN.

So basically i finally succeeded in a stable connection without any audio problems.

 

But as soon as i try to follow the next step to try to use the phone as a router to forward VPN traffic from the other switch port through the VPN i definitely get stuck:

 

If i add the line "up /openvpn/your_script.sh" to the vpn.cnf the phone won't connect the VPN anymore.

Even if i don't add this line, but add the mentioned shellscript to the tarball it won't connect.

 

Anybody here who can help me out with this one?

 

(The customer wants to add a snom M3 to this location, and the M3 doesn't do OpenVPN so i really would like to get this working).

 

Regards,

Share this post


Link to post
Share on other sites

The 821 supports the option to use a WLAN stick, and then it acts as a router. Maybe this is a way to go...

 

(Sorry this is the PBX support... But I like the idea to use VPN, it might also help settings the QoS bits right inside the VPN tunnel which will give you real QoS for remote users)

Share this post


Link to post
Share on other sites

Thanks for the suggestion. I thought it was actually a very good idea and since i had a Snom wireless stick i tried it immediately.

 

After a couple of hours trying to get the wireless going i definitively give it up. I followed al the articles on the snom forum regarding setting up the wireless, but it just won't work.

Factory resets, other firmware => Can't get past the dhcp request boot screen.

It seems a lot of people are having trouble with this. I can't understand why this is so hard....

 

So back to the first question, anybody tried using the switch function of the 821 with ipforwading to make it possible to route vpn traffic?

Share this post


Link to post
Share on other sites

I believe you make life too hard here... Maybe it is just easier to get a VPN-enabled router which does the same job. I have to defend the phone here, it is not a router. Having a WLAN routing functionality here is pushing it a little to far IMHO.

Share this post


Link to post
Share on other sites

You are right of course, on the other hand, even the snomone forum says it's possible...

Linksys routers of the type Wrt54G are capable to run the Tomatovpn firmware by Keith Moyer.

Essencially they create one or more vpn-tunnels to different networks. Networks can be connected over the internet as if they were one. Even a dhcp-server on one end serves computers on the other end, so look out if you start connecting.

A snom 320 on the 'other' end of the vpn is provisioned as if it is in the network. Connections are very stable, sound quality as well. You should of course play a bit with the qos settings, as other traffic passing the tunnel can easely interfere with the sound quality.

 

Succes,

Marc

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...