The way I see it, router should be content sensitive and when it detects call setup process over NAT it should "dinamiclly" staticaly map coresponding addresses and UDP ports. The problem with h.323 and RTP is that UDP/RTP ports are not "fixed" and could take any value form 1024 to 65535. The side on the public address space can hear me (there is a rtp traffic going) but the side in the private address space can't.
The public can hear you because they have a public IP address. But as you have a private address, the public side can't reply. In fact, your pacts get public addresses when they are NAT'ed; but it seems that NAT is not working on the H.323 layer, so the IP addresses inside the H.323 layer remain private, which means that the public side will never be able to reply.
I haven't worked with NAT x H.323 on the pratical side; I have read just some theory on it. But the IOS router with NAT supports H.323 from a specific version on. I'm not from which version, but the later versions do that. I'm almost sure that, in the H.323 layer, it's not necessary to convert the RTP ports; just the IP addresses.
Try permitting the folowing H.323 TCP ports on the PIX:
tcp any any eq 1720
tcp any eq 1720 any.
But you have to keep one thing in mind. If you're using dynamic NAT, than you are going to have a problem because of that very issue that you've mentioned, RTP ports are not fixed. Unless you open the entire RTP port range 16384 to 32767.
SIP traces provide key information in troubleshooting SIP Trunks, SIP
endpoints and other SIP related issues. Even though these traces are in
clear text, these texts can be gibberish unless you understand fully
what they mean. This document attempts to br...
Please find the attached HTML document, download and open it on your PC.
This provides an easy to use form where you simply answer a few
questions and it will render the proper jabber-config.xml file for you
to copy/paste. There is built in logic to verif...
CUCM Database Replication is an area in which Cisco customers and
partners have asked for more in-depth training in being able to properly
assess a replication problem and potentially resolve an issue without
involving TAC. This document discusses the bas...