Solved

Forwarding a range of UDP ports on Cisco 881 Router

Posted on 2014-03-13
3
3,089 Views
Last Modified: 2014-03-18
I have a question that I can't seem to find a solid answer for.  I need setup VOIP port forwarding on a Cisco 881router for a client.  Currently they client only has a single static outside IP for me to work with.  Setting up the static NAT for the single TCP 5060 or single UDP 5060 forward works fine.

The issue is forwarding the Voice UDP port range of 10000 20000 to the inside IP address of the SIP Phone system.  I can't do a 1-to-1 NAT because there are other ports that need to forwarded to a different server.  I have seen two different methods suggested, using a access-list, route-map and a static NAT statement.  The other is to use a "static destination" NAT statement with a rotary command at the end.

I have seen all kinds of opinions on which might work with the Cisco IOS. I am hoping that someone has found a way around this bug.
0
Comment
Question by:keagle79
  • 2
3 Comments
 
LVL 6

Accepted Solution

by:
Tim Phillips earned 500 total points
ID: 39927852
I think the way to do this is to use the access-list method you mentioned seeing.

Something like:

R6(config)# ip nat pool PORTFWD 192.168.0.50 192.168.0.50 netmask 255.255.255.0 type rotary
R6(config)# access-list 100 permit udp any any range 10000 20000
R6(config)# ip nat inside destination list 100 pool PORTFWD


http://evilrouters.net/2010/05/25/port-forwarding-a-range-of-ports-on-cisco-ios/
0
 

Author Comment

by:keagle79
ID: 39928022
I saw that method as well, however some people are saying that it only works with TCP.  Can anyone confirm that this method works with UDP traffic as well?
0
 

Author Closing Comment

by:keagle79
ID: 39937879
The answer is valid, unfortunately it will not work for my particular situation.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now