Meraki

JonP · ‎May 4 2023

Hello Community,

I just want to sanity-check something with you all.

We turned on Any Connect on our two MX's (MX105's in HA) and this killed our VoIP. We couldn't make or receive calls from any handset behind the firewalls until we turned the feature off again.

The AnyConnect subnet is completely different from any of our other production subnets, so we don't understand why this happened, and we think that it shouldn't have happened because the AnyConnect setup is independent of any other firewall features. Even if the MXs needed to re-provision (like Ubiquiti calls it) surely the spare should have taken over duties whilst the primary appliance did its thing?

It doesn't look like internet traffic was disrupted, just VoIP. We're a little hesitant to re-enable this feature because we need our VoIP as a key component of our business.

Any thoughts?

Thanks 🙂

alemabrahao · ‎May 4 2023

You should probably open a support case.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Brash · ‎May 4 2023

My only guess would be if the Anyconnect inbound port overlaps with any DNAT rules/inbound ports you have for VOIP.

Failing that, definitely open a support case.

JonP · ‎May 4 2023

The ports are a good point. There's a whole list of VoIP ports that we have to enable to get through the firewall. @CameronS

Meraki

Community

Turning on AnyConnect killed our VoIP

Turning on AnyConnect killed our VoIP