03-12-2007 12:42 PM - edited 03-03-2019 04:08 PM
I have a customer who is being natted by a static nat on a Cisco 3725. For some reason, ichat AV will not run through the nat. It will work without the nat, and it will work with a nat through a dsl router, but not with the IOS natting. Here is my version info:
Cisco IOS Software, 3700 Software (C3725-SPSERVICESK9-M), Version 12.3(11)T2, RELEASE SOFTWARE (fc1)
Tom
03-13-2007 04:43 AM
Hi Tom,
Could you please explain indetail wht u tring to do.
Thanks
Ninja
03-13-2007 05:46 AM
I am a ISP. I have a customer who wants to run Apples Ichat AV program, but it won't work on my system. I'm doing a simple static nat:
ip nat inside source static 172.16.11.1 xxx.xxx.xxx.xxx
with an
ip nat outside on my serial port.
To troubleshoot, I had the customer bring in their pc and found that the IchatAV would run fine if I weren't natted. I then put them behind a simple dsl router, natted through the router, and it still worked fine. It then appears that there is something about Cisco's version of natting that makes it not work. I also tried dynamic nat for this customer and it didn't work either.
I hope that explains it, I haven't opened up a ticket yet, but may have to soon.
Tom
04-01-2007 03:33 PM
Tom,
Have you gotten any further with this issue?
- Dave
04-02-2007 05:55 AM
No, I haven't. I may have to open up a ticket.
Thanks for asking.
Tom
04-02-2007 11:18 AM
It seems to be some type of NAT translation issue related to how the application attempts to peer-to-peer it's video connections. I was going to run some debugs myself, but I haven't had anyone to try it with today. I'll see if I can't get some data posted on the NAT streams.
I'm curious if it works within the broadcast domain and it's just the NAT external connections that cannot seem to sync.
Let me know if you find anything new. Thanks!
- Dave
06-21-2007 04:57 PM
Tom,
I don't know if you have a solution yet but I've had the same issue for a while now and have figured out how to get iChat working using static NAT.
no ip nat service sip udp port 5060
no ip nat service sip tcp port 5060
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static tcp
ip nat inside source static tcp
ip nat inside source static udp
ip nat inside source static udp
ip nat inside source static udp
To be honest, I haven't had the opportunity to test this due to the fact that my solution needs to be from ANY source address to a NAT pool. This should work well though...it includes all of the required ports on Apple's site. The reason you were having issues was mainly due to the initial "no ip nat service sip udp port 5060". As I understand it, Cisco NAT steals this port for use with voice protocols. Anyway, hope that helps...please let me know if that works out. If it helps at all, rate me pls :)
06-22-2007 02:20 AM
Blake,
Would you please forward the link to these specifications on Apple's site (or, conversely, just submit a table of what aplications these ports represent)?
Thanks much for your contribution!
- Dave
06-22-2007 03:08 AM
Dave,
Sure...I've got the config guide for http://docs.info.apple.com/article.html?artnum=93208 - Using iChat AV with a firewall or NAT router
And http://docs.info.apple.com/article.html?artnum=106439 - "Well Known" TCP and UDP Ports Used by Apple Software Products
Obviously the first link doesn't actually help other than to provide the specific port information. The second provides a list of all Apple ports. Lemme know if this is what you're looking for.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: