[cisco-voip] SIP NAT in CUBE with media flow-around?
Roger Wiklund
roger.wiklund at gmail.com
Wed Nov 7 10:07:32 EST 2012
Thanks!
Yepp exactly what I'm seeing.
I have a very specific case where the CUBE is both SBC and default
gatway/NAT for clients. On top of that I'm using media flow-around.
When the CUBE sends the SDP info to the ITSP it contains the private IP of
the phone. I was thinking that SIP-NAT would still look at the SIP/SDP and
NAT any private to public IPs.
I solved it by doing sip manipulation like this:
voice class sip-profiles 10
request ANY sdp-header Audio-Connection-Info modify "192.168.100.*"
"xx.xx.xx.xx"
As NAT is already active for the OTHER direction, I.E. from phone to ITSP,
it uses that for traffic from ITSP to Phone.
The reason I'm using flow-around is because I have 2 mobile phones as
RDP/RD with an extension number. If these call each other directly, with
flow-through the media has go to all the way to the CUBE and back, cause
delays and quality problems.
With flow-around the media is only in the carriers network/gateways.
On Wed, Nov 7, 2012 at 3:45 PM, Chris Ward (chrward) <chrward at cisco.com>wrote:
> Using media flow-around means you don’t want the CUBE to terminate the
> media sessions so it flows directly from one side to the other. I think you
> are seeing exactly that. The CUBE is terminating the SIP sessions so CUBE
> will control all the SDP information. It sounds like the CUBE is by-passing
> NAT, and I would expect it to. ****
>
> ** **
>
> Why are you using Flow-Around mode? ****
>
> ** **
>
> +Chris****
>
> Unity Connection TME****
>
> ** **
>
> *From:* cisco-voip-bounces at puck.nether.net [mailto:
> cisco-voip-bounces at puck.nether.net] *On Behalf Of *Roger Wiklund
> *Sent:* Wednesday, November 07, 2012 6:33 AM
> *To:* Cisco VOIP
> *Subject:* [cisco-voip] SIP NAT in CUBE with media flow-around?****
>
> ** **
>
> Hi****
>
> ****
>
> I've configured a CUBE that has a public IP on the outside interface and
> private in the inside.****
>
> I'm using media flow-around and PAT.****
>
> ****
>
> The problem is that SDP info sent to the ITSP contains the private IP. It
> seems that the CUBE is not NATing the SDP.****
>
> ****
>
> I have ip nat service sip udp port 5060 enabled, I also tried to disable
> it without any luck.****
>
> Also tried the piggyback stuff and sip-sbc nat stuff, nothing is working.*
> ***
>
> ****
>
> I'm beginning to suspect that NAT Traversal is not supported in
> flow-around mode.****
>
> ****
>
> Any pointers?****
>
> ****
>
> /Roger****
>
> ****
>
> ****
>
> ****
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20121107/fdf4ab79/attachment.html>
More information about the cisco-voip
mailing list