10-16-2013 12:08 PM - edited 03-04-2019 09:20 PM
Hello
I acquired a comany comprising of 5 sites. I am phasing these onto my AVPN network which currently consists of 12 sites.
The phasing aspect is being done by denying their subnets from my current routers and vice-verse.
The new sites have re-ip addresssed their LAN subnets. However, -These new sites are using a specific subnet, say 192.168.101.x for their VoIP system.
-I am already using that same subnet for my data center.
The same subnet range plays an important role for each company.
I am using Cisco 29xx and 39xx routers for ALL sites with "universalk9-mz.SPA.152-4.M3.bin"
It seems I should be able to create a pool on the (5) new site routers that NAT that subnet, 192.168.101.x to some other subnet range. I could then allow
that subnet to be rouer only amongst the new sites until their new VoIP system is in place. I could deny that natted subnet from my current AVPN routers.
The plan seems simple enough.
Can this be done?
If so, please provide configuration examples to help me implement this.
Solved! Go to Solution.
10-17-2013 11:10 AM
Yes. That static is correct.
But since this is a VoIP network, you might have some problems because voice traffic, whether it's H.323 or SIP, embeds the IP within the payload, and that does not get translated. Calls will go through, but you will not hear anything.
Sachin
10-17-2013 12:16 PM
Sachin
"Calls will go through, but you will not hear anything" = not good.
if it is embedded in payload and payload gets transmitted, why won't this work?
What options do I have?
This has to work?
10-17-2013 12:30 PM
Sachin
Per a document witha title of Voice and Multimedia over IP networks
"The NAT Support for SIP feature allows SIP embedded messages passing through a router configured with NAT to be translated and encoded back to the packet"
So it looks like I need to use an Application-level gateway
10-17-2013 02:02 PM
I am using the following IOS
universalk9-mz.SPA.152-4.M3.bin
Per the Cisco Feature navigator this version has supprt for NAT - Support for SIP IP, IP addressing and Application services
This version also has support for NAT-PT: support for DNS ALG and FTP ALG
Do you have any knowledge of an IOS version required to support what I am trying to accompish?
10-17-2013 03:15 PM
I have no experience with ALG but you can try it. Your IOS version should already support it.
ip nat service sip udp port 5060
ip nat service sip tcp port 5060
Sachin
10-18-2013 07:19 AM
Sachin
This conversation has been very helpful. Thank you for the input.
One question that lingers for me is what to do and/or how to verify, prior to production implementation, that your prior statement of "But since this is a VoIP network, you might have some problems because voice traffic, whether it's H.323 or SIP, embeds the IP within the payload, and that does not get translated. Calls will go through, but you will not hear anything. is not what will happen?!?
10-17-2013 07:45 AM
No, you won't need the access-list.
Sachin
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide