Configuring VPN 3000 Concentrator for softphones

Unanswered Question
Mar 4th, 2008

We are connecting up end users with the Cisco VPN client to the concentrator. The end users are utilizing softphones for voice and everything is working fine until they call another softphone. They will be able to establish a call but are not able to pass data once the phone system drops out and the call is peer-to-peer.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


that link makes no sense for his issue.

i suspect what is happening is the client is firewalled and the softphone traffic is not getting back through the client's stateful inspection. I suggest one of two quick fixes;

1. disable/uninstall the client firewall. If your security policy requires a firewall on vpn clients, use the vpn concentrator firewall policy.

2. Configure IPSEC/TCP instead of the concentrator default IPSEC/UDP 10000. This can be configured under the configuration section of the vpn concentrator. I had all my clients back in '05 doing ipsec/tcp to make things work that the windows xp firewall would deny back in.



This Discussion