Community discussions

MikroTik App
 
rakireply
just joined
Topic Author
Posts: 1
Joined: Thu Jun 14, 2018 9:04 am

Shoretel Switch send a RST and unable to communicate to Shoretel Server

Thu Jun 14, 2018 9:07 am

Hello All,

We had a MPLS connectivity between our HQ and branch, we have recently migrated to IPSec VPN and i have enabled all ports between the HQ Soretel server and the branch Office. We can do a ping and access the Shoretel Branch swithc but Swith fails to Pair up as its sending RST packets back to HQ server.

Will SHoretel works fine in IPsec ? do i need to do anything to avoid this issue.

Shorele guys says there is a network issue Port 5452 seems Filtered intermittently. I have checked the config with Cisco Support, they verified and confirmed ports open and nothing found in packet capture.

can any one suggest over my case ? below are the Logs

tmsncc log shows hq cannot communicate to this switch

00:00:12.321 ( 5072: 6528) cco_cmd: clnt_call error: status= 3 (RPC_CANTSEND)
00:00:12.321 ( 5072: 6528) ncc_connect_setup: --> -20 (RPC_ERROR)
00:00:12.321 ( 5072: 6528) ncc_connect_to_switch: "10.104.6.7", 5452
00:00:12.327 ( 5072: 6528) 9, (19.47.5900.0) "10.104.6.7", "00-10-49-3D-2D-5B", 25(SG4-30) Flash, "en-US", (1.1.3.27),"3 d + 08:12:45",0
00:00:12.327 ( 5072: 6528) ncc_event_connect (2018/06/11 07:00:12.327, +7)
00:00:22.328 ( 5072: 6528) readtcp wfmo timeout
00:00:22.328 ( 5072: 6528) sw_cmd: clnt_call error: status= 5 (RPC_TIMEDOUT)
00:00:22.328 ( 5072: 6528) nec_event_connect_ex: --> -20 (RPC_ERROR)
00:00:26.314 ( 5072: 6528) ncc_connect_to_switch: "10.104.6.7", 5452

since the ip address changed to a different network, this may be firewall issue. There are no other switches that the server is not able to connect to only this switch.
tmsncc keyword search "ncc_connect_to_switch"

1. pcap filter used
udp.port eq 5440 and ip.addr==10.104.6.7
results= hq server does communicate to swtich and switch responds udp port 5440 ( location service ) port

2. pcap filter used
tcp.port eq 5452 and ip.addr==10.104.6.7
results=you will see the hq server communicate with the switch but then you will see the switch send a RST ( connection reset ) back to the hq server.

3. pcap filter used to confirm udp port 5452 comm between hq and switch
tcp.analysis.retransmission
results= hq tries to communicate with switch on udp port 5452 , switch does not respond. hence lost communications with the switch via director.

4. pcap filter used to confirm connection reset
tcp.flags.reset==1
results= switch sends a connection reset to hq server. there are other connection resets shown with this filter to other ips but do not look like they belong to pbx system

Who is online

Users browsing this forum: CGGXANNX, xrlls and 76 guests