How do I setup the option 150? I checked my phone and it only has options up to 58? and for manual setting, I just need to put the DHCP server of the remote phone as the UC520`s IP address? (which is 192.168.0.55 here.)

thanks

In DHCP server config. You can refer to its documentation or search the web, etc.

Hello,

Do you have a static default route on the UC pointing to the local fortinet for VPN/Web access? You need to do that so the UC has a gateway to route the traffic back to.

How do you have the VPNs configured on the fortinet? You need to allow the voice vlan and CUE vlan in the VPN configuration.

Hope this helps.

Thanks,

-john

Hi John,

Thanks for replying. How to set the default route? I tried to add a static routing in the CCA, I tried to put the destination IP as the outside/inside IP of the remote office gateway, netmask as 255.255.255.0, gateway IP of main office gateway(192.168.0.99), but CCA said it was not a valid entry.

how do I set that?

Thanks,

Peter

Hello,

The static default route should look like: 0.0.0.0 0.0.0.0 192.168.0.99

Destination: 0.0.0.0

Netmask: 0.0.0.0

Gateway: 192.168.0.99 <- I'm assuming this is the local IP of the Fortinet at the main site.

Thanks,

-john

Hi John,

I tried your setup, but the CCA  does not allow me to set the netmask as 0.0.0.0, there is a drop down list, from where I can choose a netmask, which includes(128.0.0.0, 192.0.0.0, etc), can`t put 0.0.0.0 myself.

Also in our fortinet VPN configuration page, I don`t see any options to allow voice Vlan and data Vlan?

thanks,

Peter

Hello,

If you can't add the static default route then you probably already have one defined, and you can only have one static default route. Do you see another static default route?

You will need to permit access on the VPN to the voice and CUE networks for the remote phones to register. I couldn't tell you how to configure the Fortinet to allow that though.

Thanks,

-john

Yes there is one already defined, destination 0.0.0.0, netmask 0.0.0.0, but it is not showing the gateway IP though. Do I need to delete this one and create a new one to fill in the gateway IP?

also there is another static routing 10.1.10.1, netmask 255.255.255.0, not showing gateway IP either.

I think the VPN is configured to allow any traffic thru the VPN tunnel. But for the voice network, since it is in 10.0.0.x network, how do I allow it into the 192.168.0.x network?

As for CUE network, is it data Vlan that you are referring to?

Thanks,

Peter

Hello,

Can you post from the CLI what your IP route statements are? CCA might be having an issue reading your CLI configuration. There should be a route to the CUE module in the routing, so that seems normal except that you are missing the gateway.

If I read your original post correctly, the voice network should be 10.1.1.x. Whatever your voice network is, you need to make sure that if the UC is not your default gateway, that there is a route to that network on your default gateway.

The CUE network(voicemail) is separate from the voice and data networks. The default network for CUE is 10.1.10.0 mask 255.255.255.252

Thanks,

-john

I`m very new to cisco products and I`m limited on support locally. I don`t know how to use the CLI, or how to perform the action you mentioned. Do you mind giving me the instructions?

The voice network is indeed 10.1.1.x, my bad on the 10.0.0.x.

Hello,

In CCA go to Troubleshoot -> IOS Exec Commands

The default command should be show running-config. Click the run button to generate the output from that command. In the search box search for "ip route"

Copy and paste all of your ip route commands here.

Thanks,

-john

ip route 0.0.0.0 0.0.0.0 Dialer0

ip route 10.1.10.1 255.255.255.255 Integrated-Service-Engine0/0

That`s all IP routes I have...