1
Virtual private networks / Avaya IP Phone IPSec - Not Registering
« on: December 09, 2020, 08:52:01 pm »
Greetings. This is my first post on the forum and I hope I have posted it to the right topic.
I was given an Avaya IP phone for work from home (model 9608G). It uses IPSec directly from the phone to connect to the office. I can confirm it is using UDP 4500 for NAT-T.
This worked with pfsense 2.4.5p1 and an old Zyxel usg 50. But with opnsense 20.7.5, the phone establishes the tunnel but will not communicate further (no registration).
Opnsense is configured with automatic outbound NAT, default LAN and WAN rules, no IDS/IPS, IPSec and OpenVPN are disabled. Single WAN connection through Spectrum cable.
I found some old forum posts in German referring to problems with NAT-T, but they may have been referring to VPNs originating/terminating on opnsense itself.
Figured it was worth a shot posting here and seeing if anyone had experience with getting Avaya's phone VPN working.
I was given an Avaya IP phone for work from home (model 9608G). It uses IPSec directly from the phone to connect to the office. I can confirm it is using UDP 4500 for NAT-T.
This worked with pfsense 2.4.5p1 and an old Zyxel usg 50. But with opnsense 20.7.5, the phone establishes the tunnel but will not communicate further (no registration).
Opnsense is configured with automatic outbound NAT, default LAN and WAN rules, no IDS/IPS, IPSec and OpenVPN are disabled. Single WAN connection through Spectrum cable.
I found some old forum posts in German referring to problems with NAT-T, but they may have been referring to VPNs originating/terminating on opnsense itself.
Figured it was worth a shot posting here and seeing if anyone had experience with getting Avaya's phone VPN working.