Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Cisco Router Firewall to work with VoIP

Posted on 2006-07-05
4
Medium Priority
?
422 Views
Last Modified: 2010-04-12
We will be implementing Cisco routers for all our VoIP installations. The setup is with a Hosted softPBX outside the organization. Previously we had to research the organizations existing firewall box to see if it was cabable of handling the NAT process for VoIP phones. Now we want to use the existing firewall security capabilities of Cisco 800, 1800, and 2800 series routers to handle this NAT process for VoIP calls.

1. What is this "NAT" functionality that handles VoIP calls outside the organization (though a firewall) called? I don't believe it's NAT(something about packet rewrite and handling support of codecs like G.711).

2. Do all these series routers firewallls handle this process and how is it implemented?

3. Any resources you could point me to in learning about this process would also be appreciated.

Thank You
0
Comment
Question by:eidebailly
  • 2
  • 2
4 Comments
 
LVL 36

Accepted Solution

by:
grblades earned 1500 total points
ID: 17044617
1&2) This functionality is only on the Cisco PIX firewalls and it basically inspects the SIP and RTP traffic and alters the contents of the packets as it goes through the firewall much the same way and inteligent NAT routers do with ftp traffic.

You can have a STUN (proxy) server outside your network and configure the phones etc... to use it. A STUN server detects the presence of NAT and tries to work around the problems caused.

3) http://www.voip-info.org/wiki-STUN
0
 

Author Comment

by:eidebailly
ID: 17044799
I was just told by our line-carrier that they currently use 871 routers on up that have at least version 12.4 IOS. They say that this IOS handles the NAT transversal for VoIP. Does that sound right? So that means I wouldn't need anything but one of these routers with IOS to handle VoIP and NAT problem?
0
 
LVL 36

Expert Comment

by:grblades
ID: 17046571
I dont know of any specif router feature to enable SIP inspection like the PIX does.
Could you ask your carrier what the command is to enable the feature on the latter IOS version?
0
 

Author Comment

by:eidebailly
ID: 17054131
It didn't look like there was a command to enable it. It came with it. ALG: Application Layer Gateway Feature. Which does NAT transveral for VOIP. It looked like it came out around IOS 12.2 but my carrier doesn't use anything lower than 12.4.
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my office we had 10 Cisco 7940G IP phones that were useless as they were showing PROTOCOL APPLICATION INVALID when started. I searched through Google and worked for a week continuously on those phones, and finally got them working. This is a di…
Every year the snow affects people and businesses. According to the Federation of Small Businesses (FSB), in 2009, UK businesses lost an estimated £1.2bn (http://news.bbc.co.uk/1/hi/business/7864804.stm) because of bad weather. This article was c…
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question