Hi All,
I'm working with a customer to get wireless YeaLink phones to communicate to Jive Voice hosted PBX. The customer has several wired phones of this model on the LAN and they all work without an issue. There are 6 wireless phones on the wireless. The wireless phones were put on a guest SSID which uses Meraki DHCP with NAT over to the LAN IP space. I created a wireless SSID specifically for these devices. I configured the SSID to use bridge mode so that the devices can get IP addresses right off the LAN.
These phones are recieving an IP address, but they are not getting SIP service, and when they did on the regular SSID, it was intermittent.
I was told from the phone vendor to configure the following, my questions and remarks are in bold:
- NAT. Network Address Translation connections must be allowed keepalive requests to devices every 30 seconds.
Can this be configured on Meraki? - QoS. Quality of Service (physical, logical, or class-of-service) must be applied to prioritize voice over other types of traffic in a converged network.
Done, see photos attached. - SIP. Session Initiation Protocol (UDP) connections must be allowed on ports 5060 and 5061.
Done. See Attached . - SIP ALG. The SIP Application-Level Gateway, Transformations, and other SIP specific settings must be disabled or configured.
I have found and was told that you cannot turn off SIP ALG, because Meraki does not use SIP ALG, is this correct? - RTP. Real-time Transport Protocol (UDP) requests must be allowed on ports 10,000-65,536.
Done. - NTP. Network Time Protocol (UDP) traffic must be allowed over port 123.
Done. - HTTP. Hyper Text Transfer Protocol (TCP) traffic must be allowed over port 80.
Done.
I was also told that I need to configure the following:
Jive Voice handsets must have unfiltered access to Jive’s network ranges. These IPv4 and IPv6 ranges are listed below and are also available in a automatically parsable (and updated) form here. Description Block Netmask Wildcard Jive Block 1 199.36.248.0/22 255.255.252.0 0.0.3.255 Jive Block 2 199.87.120.0/22 255.255.252.0 0.0.3.255 Jive Block 3 162.250.60.0/22 255.255.252.0 0.0.3.255 Jive Block 4 208.34.80.0/21 255.255.248.0 0.0.7.255 Jive Block 5 208.34.96.0/20 255.255.240.0 0.0.15.255 Jive IPv6 2606:CB00::/32 — — Our recommendation is to create explicit rules that allow traffic to and from Jive’s IP blocks (LAN→ WAN and WAN→ LAN) and set high in priority — even if this is implicitly stated in another access rules down the list.
What would be the best way to accomplish this task? Would I need to use 1 to Many Nat for the IPs on the lan for the phones?
I appreciate any help and insight.
Tory Davenport
I found a doc with some info on Jive that might be of use.
https://jive.com/resources/support_page/onboarding/network-readiness-2/quality-service-qos/
Now I don't have clients with Jive, but I do have clients with RingCentral on Meraki and using wireless and also using YeaLink phones.
Attached is the a working config we have used with RC and Meraki.
If you are using bridge mode most of those settings don't apply.
Does the Wireless firewall allow local LAN traffic?
Wireless/Firewall & Traffic Shapping
I found a doc with some info on Jive that might be of use.
https://jive.com/resources/support_page/onboarding/network-readiness-2/quality-service-qos/
Now I don't have clients with Jive, but I do have clients with RingCentral on Meraki and using wireless and also using YeaLink phones.
Attached is the a working config we have used with RC and Meraki.
