If the ISP has this setup as you describe, disabling NAT won't fix the problem.  Are you getting the SIP trunk to register?  If not, you might want to try a debug ccsip messages to see why it isn't registering.  You could use the same debug if you are having problems getting the calls established.

Steven,

The sip lines are regsitered

UC520#sh sip reg st
Line          peer           expires(sec)  registered
============  =============  ============  ===========
XXXXXXXX      20003            654           yes
XXXXXXXX      20005            2635          yes

If i try to make a call to the registered number, I get a busy tone, no SIP debug messages on the UC.

Just for the fun of it, I removed the SIP-UA config and reconfigured it to check the register messages, after sending a REGISTER i get a 200 OK in return, so there is no trouble with the registration

Regards

Eivind

What about outbound calls? Do those work?

Can you ask your Service Provider what is the registered contact (IP address) that they see on their side?

Marcos

Marcos,

Not able to make outbound or "outside to inside" calls. I'll check with the SP later on, it's public holiday here until next week.

Regards

Eivind

John,

Actually I want the customer to change provider since the support from the existing provider is not good. We are not able to change the router since this is owned by the SP.

regards

Eivind

Could you run the following commands on the UC520 and post the output please

• "Sh run int F0/0"
• "Sh run | include ip nat"

Could you also post the "SIP-UA" config please.

Do you know how the ISP has configured NAT on their router, if they have simply configured it for PAT ie: NAT Overload on the outside IP Address yes the UC520 wont work with SIP, they will need to create a static NAT entry referancing the IP Address of the UC520 on the inside network and add an access list permitting SIP UDP/TCP Port 5060 from the IP Address of your SIP provider. It would also help if they applied traffic inspection for SIP using CBACS in an outbound direction.

Ideally you want control of the router.

Regards

Mark,

UC520#sh run int fa0/0
Building configuration...

Current configuration : 331 bytes
!
interface FastEthernet0/0
description $FW_OUTSIDE$
ip address x.x.x.x 255.255.255.252
ip access-group 105 in
ip verify unicast reverse-path
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip inspect SDM_LOW out
ip virtual-reassembly
duplex auto
speed auto
snmp trap ip verify drop-rate

UC520#sh run | i ip nat
ip nat inside
ip nat outside
ip nat inside
ip nat inside
ip nat inside
ip nat inside source list 1 interface FastEthernet0/0 overload

sip-ua
authentication username X password 7 X

nat symmetric role active
no remote-party-id
retry invite 2
retry register 10
timers connect 100
registrar dns:X expires 3600
sip-server dns:X

  host-registrar

I don't know how the 828 router is configured, the respons from the SP was that others before me have resolved this issue. (OK, thanks for the SUPPORT, LOL)

Regards

Eivind

Right ok, well if the ISP has configured NAT on there router you need to disable NAT on your UC520 and just use RFC1918 addressing.

On the following interfaces you will have the statement IP NAT INSIDE

"Vlan 1"

"Vlan 100"

"LoopBack0"

"Integrated-Service-Engine0/0"

On the following interfaces you will have the statement IP NAT OUTSIDE

"FastEthernet0/0"

IP address x.x.x.x 255.255.255.252 - Is this a public facing address ie: 180.190.170.1/30

Effectively what is happening at the moment is that traffic is being NATed twice, once by your UC520 and once by the ISP router which is very bad for VoIP traffic.

Try the following:

• Backup the current config to flash
• Remove the NAT statements from the interfaces listed above

Let me know how you get on. If you ISP isnt NATing traffic on there router and simply has it in bridging mode there could be something else at fault.

Regards

Hi Mark,

the x.x.x.x address i public.

OK, removed the NAT configuration, this didn't solve anything, still won't get calls through to the UC.

Regards,

Eivind

Right ok, if you want PM over the config id be happy to look at it for you, after running it through my mind if you have been allocated a /30 address i doubt the 828 will be doing anything but terminating the internet connection.

Regards

That´s my thoughts as well. PM? what´s that?

Regards

Eivind