Can anyone help me understand how this might work? Im having serious issues getting Tandberg H.323 working behind this router with NAT.
My setup is Cisco 1811 configured with Fas0 to pull DHCP (public address). This router is being used in a mobile medical clinic VAN so the setup needs to be seamless and transparent to the users. The idea with the DHCP is anywhere they go they could pull a DHCP address and then NAT behind that address. The van visits mostly small schools in the Texas Rio Grande Valley providing medical assistance and consulting to the local community. The router has an 8 port built in switch and all ports are sitting in default VLAN 1.
Basic stripped down config, only relevant commands listed
ip dhcp excluded-address 10.0.0.1 10.0.0.4
ip dhcp pool VANnet
network 10.0.0.0 255.255.255.240
ip address DHCP
ip NAT outside
interface VLAN 1
ip address 10.0.0.1 255.255.255.240
ip NAT inside
ip nat inside source list 1 interface Fas0 overload
access-list 1 permit 10.0.0.0 0.0.0.255
Basically everything from the 10.x.x.x is NATd to the Fas0 DHCPs address. Then I have several static NATs defined for port forwarding
ip nat inside source static tcp 10.0.0.2 (Tandberg) 1719 interface FastEthernet0 1719
ip nat inside source static tcp 10.0.0.2 1720 interface FastEthernet0 1720
Now initially I cant even get the call to connect with just using the ports above, which I should. Also knowing there are several issues with H.323 and NAT I went ahead and added all know ports Tandberg says they use
80 HTTPd *TCP
443 HTTPs TCP
1719 H323/RAS UDP
1720 H323/Q931 *TCP
2326-2373 (2837)** H323/RTP UDP
5555-55xx (5587)** H323/H.245/Q.931 TCP
Basically I created static NAT entries for all the ports and the ranges above. For the ranges I had to add a line for every port.
For example on the ranges I had to do this
ip nat inside source static udp 10.0.0.2 2326 interface FastEthernet0 2326
ip nat inside source static udp 10.0.0.2 2327 interface FastEthernet0 2327
ip nat inside source static udp 10.0.0.2 2328 interface FastEthernet0 2328
etc (all the way down through each port range)
This didnt and hasnt worked yet even with some additional tweaking Finally the question am I going about this all wrong? Is there an arrangement of commands that will even work? How can I accomplish the port forwarding setup on a Linksys/Netgear router on a real Cisco router?