Cisco SPA1001 Administration Guide - Page 26

Simple Traversal of UDP Through NAT, SIP-NAT Interoperation - default ip

Get Cisco SPA1001 PDF manuals and user guides View all Cisco SPA1001 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 26 highlights

Technology Background Chapter 1 Introducing Linksys Analog Telephone Adapters With symmetric NAT all requests from the same internal IP address and port to a specific destination IP address and port are mapped to a unique external source IP address and port. If the same internal host sends a packet with the same source address and port to a different destination, a different mapping is used. Only an external host that receives a packet can send a UDP packet back to the internal host. Simple Traversal of UDP Through NAT Simple Traversal of UDP through NATs (STUN) is a protocol defined by RFC 3489, that allows a client behind a NAT device to find out its public address, the type of NAT it is behind, and the port associated on the Internet connection with a particular local port. This information is used to set up UDP communication between two hosts that are both behind NAT routers. Open source STUN software can be obtained at the following website: http://www.voip-info.org/wiki-Open+Source+VOIP+Software STUN does not work with a symmetric NAT router. To determine the type of NAT your router uses, complete the following steps: Step 1 Step 2 Step 3 Enable debugging on the Linksys ATA: 1. Make sure you do not have firewall running on your PC that could block the syslog port (by default this is 514). 2. On the administration web server, System tab, set to the IP address and port number of your syslog server. Note that this address and port number has to be reachable from the Linksys ATA. 3. Set to 3 but you do not need to change the value of the parameter. 4. To capture SIP signaling messages, under the Line tab, set to Full. The output is named syslog.514.log. To determine the type of NAT your router is using set to yes. View the syslog messages to determine if your network uses symmetric NAT or not. SIP-NAT Interoperation In the case of SIP, the addresses where messages/data should be sent to a Linksys ATA system are embedded in the SIP messages sent by the device. If the Linksys ATA system is sitting behind a NAT device, the private IP address assigned to it is not usable for communications with the SIP entities outside the private network. Note If the ITSP offers an outbound NAT-Aware proxy, this discovers the public IP address from the remote endpoint and eliminates the need to modify the SIP message from the UAC. The Linksys ATA system must substitute the private IP address information with the proper external IP address/port in the mapping chosen by the underlying NAT to communicate with a particular public peer address/port. For this, the Linksys ATA system needs to perform the following tasks: • Discover the NAT mappings used to communicate with the peer. This can be done with the help of an external device, such as a STUN server. A STUN server 1-12 Linksys ATA Administrator Guide Document Version 3.1

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
1-12
Linksys ATA
Administrator Guide
Document Version 3.1
Chapter 1
Introducing Linksys Analog Telephone Adapters
Technology Background
With symmetric NAT all requests from the same internal IP address and port to a specific destination IP
address and port are mapped to a unique external source IP address and port. If the same internal host
sends a packet with the same source address and port to a different destination, a different mapping is
used. Only an external host that receives a packet can send a UDP packet back to the internal host.
Simple Traversal of UDP Through NAT
Simple Traversal of UDP through NATs (STUN) is a protocol defined by RFC 3489, that allows a client
behind a NAT device to find out its public address, the type of NAT it is behind, and the port associated
on the Internet connection with a particular local port. This information is used to set up UDP
communication between two hosts that are both behind NAT routers. Open source STUN software can
be obtained at the following website:
STUN does not work with a symmetric NAT router. To determine the type of NAT your router uses,
complete the following steps:
Step 1
Enable debugging on the
Linksys ATA
:
1.
Make sure you do not have firewall running on your PC that could block the syslog port (by default
this is 514).
2.
On the administration web server, System tab, set <Debug Server> to the IP address and port number
of your syslog server.
Note that this address and port number has to be reachable from the
Linksys ATA
.
3.
Set <Debug level> to
3
but you do not need to change the value of the <syslog server> parameter.
4.
To capture SIP signaling messages, under the Line tab, set <SIP Debug Option> to
Full
. The output
is named syslog.514.log.
Step 2
To determine the type of NAT your router is using set <STUN Test Enable> to
yes
.
Step 3
View the syslog messages to determine if your network uses symmetric NAT or not.
SIP-NAT Interoperation
In the case of SIP, the addresses where messages/data should be sent to a Linksys ATA system are
embedded in the SIP messages sent by the device. If the Linksys ATA system is sitting behind a NAT
device, the private IP address assigned to it is not usable for communications with the SIP entities
outside the private network.
Note
If the ITSP offers an outbound NAT-Aware proxy, this discovers the public IP address from the remote
endpoint and eliminates the need to modify the SIP message from the UAC.
The Linksys ATA system must substitute the private IP address information with the proper external IP
address/port in the mapping chosen by the underlying NAT to communicate with a particular public peer
address/port. For this, the Linksys ATA system needs to perform the following tasks:
Discover the NAT mappings used to communicate with the peer.
±
±
This can be done with the help of an external device, such as a STUN server. A STUN server