ACL between IP phone and Call Manager

Unanswered Question

Hi all,

I have two networks (Chicago and Toronto) seperated by a router. On my Voice VLAN interface I have two ACL's (incoming ACL and outgoing ACL) which include (in part) the following:

Incoming ACL:

remark ALLOW VOICE VLAN NETWORK IN TORONTO TO TALK TO CHICAGO NETWORK

permit udp host 10.20.4.52 eq tftp 192.168.10.0 0.0.0.255 range 1024 65535

permit tcp host 10.20.4.51 range 2000 2002 192.168.10.0 0.0.0.255 range 1024 65535

permit tcp host 10.20.4.52 range 2000 2002 192.168.10.0 0.0.0.255 range 1024 65535

permit udp 10.20.4.0 0.0.3.255 range 1024 65535 192.168.10.0 0.0.0.255 range 1024 65535

Outgoing ACL

remark ALLOW CHICAGO NETWORK TO TALK TO TORONTO VOICE VLAN NETWORK

permit udp 192.168.10.0 0.0.0.255 range 1024 65535 host 10.20.4.51 eq tftp

permit tcp 192.168.10.0 0.0.0.255 range 1024 65535 host 10.20.4.51 range 2000 2002

permit tcp 192.168.10.0 0.0.0.255 range 1024 65535 host 10.20.4.52 range 2000 2002

permit udp 192.168.10.0 0.0.0.255 range 1024 65535 10.20.4.0 0.0.3.255 range 1024 65535

The problem I'm running into is that IP phones in Chicago can't register with the Call Manager in Toronto unless I deativate the Voice VLAN ACL's. That being said once they are registered I can reactivate the Voice VLAN ACL's and they work fine.

It's evident that I'm missing something in my ACL necessary for the IP phone to register to the Call Manager but I'm not sure what it is?

Any suggestions? Thanks in advance...

Peter

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion