From: Nick Matthews (matthn@gmail.com)
Date: Thu Aug 07 2008 - 01:08:46 ART
If you have a gateway anywhere in there (or technically any endpoint
terminating an RTP session) you can use 'show voip rtp connections' to make
sure that it is actually going through the single IP address that you're
expecting it to. If you're using an MTP or transcoding/conferencing there's
a chance that the source/dest IP isn't what you expect. I don't know your
IPT topology, but the UDP packets are going to be routed from endpoint to
endpoint, and generally the call control servers aren't in the RTP stream.
On Wed, Aug 6, 2008 at 9:42 AM, Rich Collins <nilsi2002@gmail.com> wrote:
> Hi Peter,
>
> I can just suggest general debugging techniques (debug ip nat ..., try a
> telnet using that ip address as a source to see if you get a tcp
> translation, try (ip sla monitor 1 ... with a udpEcho type to send udp
> packets through the translation).
>
> Rgds,
> Rich
>
> On Wed, Aug 6, 2008 at 2:11 AM, Peter Stephan <engpeter@gmail.com> wrote:
>
> > Hi Rick,
> >
> > sho ip nat trans shows the ICMP translations when I ping from the
> switch's
> > SVI int to the comm server.
> > But when any of the IPT tries to communicate with the server, nothing
> > appears in the NAT translations, which means that the packets are not
> > translated at all...
> >
> > ------------------------------
> > *From:* Rich Collins [mailto:nilsi2002@gmail.com]
> > *Sent:* Wednesday, August 06, 2008 01:45
> > *To:* Peter Stephan
> > *Cc:* Sadiq Yakasai; ccielab@groupstudy.com
> > *Subject:* Re: NATTING UDP packets
> >
> > What does the show ip nat trans give?
> >
> >
> > My example:
> >
> >
> > R1#sh run | i nat
> > ip nat outside
> > ip nat inside
> > ip nat outside source static 172.16.13.2 172.16.20.1
> > R1#
> >
> >
> > R1#sh ip nat translations
> > Pro Inside global Inside local Outside local Outside
> global
> > --- --- --- 172.16.20.1 172.16.13.2
> > icmp 172.16.15.2:5 172.16.15.2:5 172.16.20.1:5
> 172.16.13.2:5
> > tcp 172.16.15.2:23 172.16.15.2:23 172.16.20.1:23829
> > 172.16.13.2:23829
> > udp 172.16.15.2:131 172.16.15.2:131 172.16.20.1:51511
> > 172.16.13.2:51511
> > udp 172.16.15.2:131 172.16.15.2:131 172.16.20.1:51995
> > 172.16.13.2:51995
> > udp 172.16.15.2:131 172.16.15.2:131 172.16.20.1:52172
> > 172.16.13.2:52172
> > udp 172.16.15.2:131 172.16.15.2:131 172.16.20.1:53508
> > 172.16.13.2:53508
> > udp 172.16.15.2:131 172.16.15.2:131 172.16.20.1:58740
> > 172.16.13.2:58740
> > R1#
> >
> > -Rich
> >
> >
> >
> >
> > On Mon, Aug 4, 2008 at 10:40 AM, Peter Stephan <pgstephan@gmail.com
> >wrote:
> >
> >> Yea sure:
> >>
> >> Here's the packets:
> >> Aug 4 13:50:52: IP: s=10.237.75.201 (FastEthernet0/0.3),
> >> d=10.237.75.195(FastEthernet0/0.3), len 41, rcvd 3
> >> Aug 4 13:50:52: UDP src=5000, dst=4100
> >> Aug 4 13:50:52: IP: tableid=0, s=10.237.75.201 (FastEthernet0/0.3), d=
> >> 10.237.75.195 (FastEthernet0/0.3), routed via RIB
> >> Aug 4 13:50:52: IP: s=10.237.75.201 (FastEthernet0/0.3),
> >> d=10.237.75.195(FastEthernet0/0.3), len 41, rcvd 3
> >> Aug 4 13:50:52: UDP src=5000, dst=4100
> >>
> >> Here's the nat conf:
> >> ip nat outside source static 10.239.98.55 10.237.75.195
> >>
> >> and couple of inside and outside on int.
> >> I'm trying to nat global address 10.239.98.55 to 10.237.75.195.
> >>
> >> The nat is working properly for ICMP... but the ipt traffic is not
> flowing
> >> to the comm serv.
> >>
> >> thx
> >>
> >> On Mon, Aug 4, 2008 at 5:54 PM, Sadiq Yakasai <sadiqtanko@gmail.com>
> >> wrote:
> >>
> >> > Can we see some configs please Peter?
> >> >
> >> > Sadiq
> >>
> >>
> >> Blogs and organic groups at http://www.ccie.net
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Sep 01 2008 - 08:15:29 ART