NATTCPSIPALGSupportTheNATTCPSIPALGSupportfeatureallowsembeddedmessagesoftheSessionInitiationProtocol(SIP)passingthroughadevicethatisconfiguredwithNetworkAddressTranslation(NAT)tobetranslatedandencodedbacktothepacket.
Anapplication-layergateway(ALG)isusedwithNATtotranslatetheSIPorSessionDescriptionProtocol(SDP)messages.
ThismoduledescribestheNATTCPSIPALGSupportfeatureandexplainshowtoconfigureit.
FindingFeatureInformation,onpage1PrerequisitesforNATTCPSIPALGSupport,onpage1RestrictionsforNATTCPSIPALGSupport,onpage1InformationAboutNATTCPSIPALGSupport,onpage2HowtoConfigureNATTCPSIPALGSupport,onpage6ConfigurationExamplesforNATTCPSIPALGSupport,onpage7AdditionalReferenceforNATTCPSIPALGSupport,onpage7FeatureInformationforNATTCPSIPALGSupport,onpage8FindingFeatureInformationYoursoftwarereleasemaynotsupportallthefeaturesdocumentedinthismodule.
Forthelatestcaveatsandfeatureinformation,seeBugSearchToolandthereleasenotesforyourplatformandsoftwarerelease.
Tofindinformationaboutthefeaturesdocumentedinthismodule,andtoseealistofthereleasesinwhicheachfeatureissupported,seethefeatureinformationtable.
UseCiscoFeatureNavigatortofindinformationaboutplatformsupportandCiscosoftwareimagesupport.
ToaccessCiscoFeatureNavigator,gotowww.
cisco.
com/go/cfn.
AnaccountonCisco.
comisnotrequired.
PrerequisitesforNATTCPSIPALGSupportLayer4Forwarding(L4F)mustbeenabledforthefeaturetofunction.
RestrictionsforNATTCPSIPALGSupportNetworkAddressTranslation(NAT)translatesonlyembeddedIPv4addresses.
NATTCPSIPALGSupport1NATapplication-layergateway(ALG)fixupforSessionInitiationProtocol(SIP)messagesoverTCPisnotdonewhenLayer4Forwarding(L4F)functionalityisdisabled.
Inthiscase,SIPmessagesareconsideredasTCPmessagesandonlyLayer3andLayer4fixupsaredone.
AsperRFC5128,NATTCPSIPALGfeatureusesEndpoint-Independentmappingtoperformaddresstranslations.
ThiscombinationallowsincomingSIPtrafficfromanyexternalendpointonthepublicnetworktoamappedpublicport.
IfyoudonotneedEndpoint-Independentmapping,useACLorZone-basedPolicyFirewalltolimitthescopeofincomingtraffic.
InformationAboutNATTCPSIPALGSupportNATTCPSIPALGSupportOverviewTheNATTCPSIPALGSupportfeatureallowsembeddedmessagesoftheSessionInitiationProtocol(SIP)passingthroughadevicethatisconfiguredwithNetworkAddressTranslation(NAT)tobetranslatedandencodedbacktothepacket.
Anapplication-layergateway(ALG)isusedwithNATtotranslatetheSIPorSessionDescriptionProtocol(SDP)messages.
TheNATTCPSIPALGSupportfeatureaddsNATALGsupportforfixingupTCP-basedSIPmessages.
SessionInitiationProtocol(SIP)isanASCII-based,application-layercontrolprotocolthatcanbeusedtoestablish,maintain,andterminatecallsbetweentwoormoreendpoints.
SIPisaprotocoldevelopedbyIETFformultimediaconferencingoverIP.
SIPcanbeconfiguredtooperateoverTCP-basedtransports.
CiscoSIPimplementationenablessupportedCiscoplatformstosignalthesetupofvoiceandmultimediacallsoverIPnetworks.
SIPprovidesanalternativetoH.
323withintheVoIPinternetworkingsoftware.
LikeotherVoIPprotocols,SIPisdesignedtoaddressfunctionsofsignalingandsessionmanagementwithinapackettelephonynetwork.
Signalingallowscallinformationtobecarriedacrossnetworkboundaries.
Sessionmanagementprovidestheabilitytocontrolattributesofanend-to-endcall.
SessionDescriptionProtocol(SDP)isaprotocolthatdescribesmultimediasessions.
SDPcanbeusedinSIPmessagebodiestodescribemultimediasessionsusedforcreatingandcontrollingmultimediasessionswithtwoormoreparticipants.
SIPMessagesEntitiesthatarepresentinaSessionInitiationProtocol(SIP)deploymentcommunicatewitheachotherbyusingwell-definedSIPmessagesthattaketheformofrequestsandresponses.
TheseSIPmessagescancontainembeddedIPaddressorportinformationthatmightbelongtoaprivatedomain,andsuchmessagesmustbefixedupwhentheypassthroughaNetworkAddressTranslation(NAT)device.
FixupdenotesthewritingofthetranslatedIPaddressbackintothepacket.
Thisfixupisnormallyperformedbyanapplication-layergateway(alsocalledanapplication-levelgateway)(ALG)modulethatresidesontheNATdevice.
Bydefault,supportforSIPisenabledonthestandardTCPport5060toexchangeSIPmessages.
YoucanalsoconfigurenonstandardportsforSIPtooperate.
NATALGacceptsandattemptsfixupoperationsonallTCPsegmentsthatoriginatefromoraredestinedtotheconfiguredSIPport.
SIPmessageprocessinginvolvesperformingthefixupoperationonacompleteSIPmessage.
ATCPsegmentmaycarrymultipleSIPmessages.
ItisalsopossiblethataSIPmessageissegmentedandcarriedintwodifferentTCPsegments.
SIPmessagesaretextbased.
AnyadjustmentthatismadetothemessageaspartoftheALGfixupcanresultinthemessagetoincreaseordecreaseinsize.
AchangeinthemessagesizemeansthattheALGmustmakeNATTCPSIPALGSupport2NATTCPSIPALGSupportInformationAboutNATTCPSIPALGSupportadjustmentstotheTCPsequenceoracknowledgmentnumbersandkeeptrackofthesame.
TherearecaseswheretheALGmustperformspoofacknowledgmentsandcompleteTCPretransmission.
TCPproxyisanessentialcomponentthatterminatesaTCPconnectionpassingthroughNATALGandregeneratestheTCPconnection.
ThisconnectionallowsNATALGtomodifytheTCPpayloadwithoutanyTCPsessionhandlingissues.
ThetablebelowidentifiesthesixavailableSIPrequestmessages.
Table1:SIPRequestMessagesPurposeSIPMessageSentbycallingpartytoconfirmthereceiptofafinalresponsetoINVITE.
ACKSentbycallingpartyorcalledpartytoendacall.
BYESenttoendacallthathasnotyetbeenconnected.
CANCELRequestsentfromaUserAgentClient(UAC)toinitiateasession.
INVITESenttoquerycapabilitiesofUACsandnetworkservers.
OPTIONSSentbytheclienttoregistertheaddresswithaSIPproxy.
REGISTERThetablebelowidentifiestheavailableSIPresponsemethods.
Table2:SIPResponseMessagesPurposeSIPMessage100=Trying180=Ringing181=CallIsBeingForwarded182=Queued183=SessionProgress1xx(Informational)200=OK2xx(Successful)300=MultipleChoices301=MovedPermanently302=MovedTemporarily303=SeeOther305=UseProxy380=AlternativeService3xx(Redirection)NATTCPSIPALGSupport3NATTCPSIPALGSupportSIPMessagesPurposeSIPMessage400=BadRequest401=Unauthorized402=PaymentRequired403=Forbidden404=NotFound405=MethodNotAllowed406=NotAcceptable407=ProxyAuthenticationRequired408=RequestTimeout409=Conflict410=Gone411=LengthRequired413=RequestEntityTooLarge414=RequestURITooLarge415=UnsupportedMediaType420=BadExtension480=TemporarilyNotAvailable481=CallLeg/TransactionDoesNotExist482=LoopDetected483=TooManyHops484=AddressIncomplete485=Ambiguous486-BusyHere4xx(RequestFailure)500=InternalServerError501=NotImplemented502=BadGateway503=ServiceUnavailable504=GatewayTimeout505=SIPVersionNotSupported5xx(ServerFailure)NATTCPSIPALGSupport4NATTCPSIPALGSupportSIPMessagesPurposeSIPMessage600=BusyAnywhere603=Decline604=DoesNotExistAnywhere606=NotAcceptable6xx(GlobalFailure)SIPFunctionalityUsersinaSIPnetworkareidentifiedbyuniqueSIPaddresses.
ASIPaddressissimilartoane-mailaddressandisintheformatsip:userID@gateway.
com.
TheuserIDcanbeeitherausernameoranE.
164address.
Thegatewaycanbeeitheradomain(withorwithoutahostname)oraspecificinternetIPaddress.
AnE.
164addressisatelephonenumberwithastringofdecimaldigits,whichuniquelyindicatesthepublicnetworkterminationpoint.
Thisaddresscontainsallinformationthatisnecessarytorouteacalltoaterminationpoint.
NoteUsersregisterwitharegistrarserverusingtheirassignedSIPaddresses.
TheregistrarserverprovidesSIPaddressestothelocationserveronrequest.
Theregistrarserverprocessesrequestsfromuser-agentclients(UACs)forregistrationoftheircurrentlocations.
Whenauserinitiatesacall,aSIPrequestissenttoaSIPserver(eitheraproxyoraredirectserver).
Therequestincludestheaddressofthecaller(intheFromheaderfield)andtheaddressoftheintendedcalledparty(intheToheaderfield).
ASIPendusermightmovebetweenendsystems.
ThelocationoftheendusercanbedynamicallyregisteredwiththeSIPserver.
Thelocationservercanuseoneormoreprotocols(includingFinger,RWhois,andLightweightDirectoryAccessProtocol[LDAP])tolocatetheenduser.
Becausetheendusercanbeloggedinatmorethanonestationandthelocationservercansometimeshaveinaccurateinformation,thelocationservermightreturnmorethanoneaddressfortheenduser.
IftherequestiscomingthroughaSIPproxyserver,theproxyservertrieseachofthereturnedaddressesuntilitlocatestheenduser.
IftherequestiscomingthroughaSIPredirectserver,theredirectserverforwardsalltheaddressestothecalleravailableintheContactheaderfieldoftheinvitationresponse.
SIPFunctionalitywithaProxyServerAproxyserverreceivesSessionInitiationProtocol(SIP)requestsfromaclientandforwardsthemontheclient'sbehalf.
ProxyserversreceiveSIPmessagesandforwardthemtothenextSIPserverinthenetwork.
Proxyserverscanprovidefunctionssuchasauthentication,authorization,networkaccesscontrol,routing,reliablerequestretransmission,andsecurity.
SIPisapeer-to-peerprotocol.
Thepeersinasessionarecalleduseragents(UAs).
Whencommunicatingthroughaproxyserver,thecallerUAsendsanINVITErequesttotheproxyserverandthentheproxyserverdeterminesthepathandforwardstherequesttothecalledparty.
ThecalledUArespondstotheproxyserver,whichthenforwardstheresponsetothecaller.
Whenbothpartiesrespondwithanacknowledgment(SIPACKmessage),theproxyserverforwardstheacknowledgmentstotheirintendedpartyNATTCPSIPALGSupport5NATTCPSIPALGSupportSIPFunctionalityandasession,orconference,isestablishedbetweenthem.
TheReal-timeTransferProtocol(RTP)isthenusedforcommunicationacrosstheconnectionnowestablishedbetweenthecallerandcalledUA.
HowtoConfigureNATTCPSIPALGSupportSpecifyingaPortforNATTCPSIPALGSupportNetworkAddressTranslation(NAT)supportforSessionInitiationProtocol(SIP)isenabledbydefault.
SIPusesthedefaultTCPport5060toexchangemessages.
Ifrequired,youcanconfigureadifferentporttohandleSIPmessages.
SUMMARYSTEPS1.
enable2.
configureterminal3.
ipnatservicesiptcpportport-number4.
end5.
debugipnatsipDETAILEDSTEPSPurposeCommandorActionEnablesprivilegedEXECmode.
enableStep1Example:Enteryourpasswordifprompted.
Device>enableEntersglobalconfigurationmode.
configureterminalExample:Step2Device#configureterminalSpecifiesaportnumberotherthanthedefaultport.
ipnatservicesiptcpportport-numberExample:Step3Device(config)#ipnatservicesiptcpport8000ExitsglobalconfigurationmodeandreturnstoprivilegedEXECmode.
endExample:Step4Device(config)#endDisplaysSIPmessagesthatNATrecognizesandtheembeddedIPaddressescontainedinthosemessages.
debugipnatsipExample:Step5Device#debugipnatsipNATTCPSIPALGSupport6NATTCPSIPALGSupportHowtoConfigureNATTCPSIPALGSupportConfigurationExamplesforNATTCPSIPALGSupportExample:SpecifyingaPortforNATTCPSIPALGSupportThefollowingexampleshowshowtoconfigurethenonstandardport8000:Device(config)#ipnatservicesiptcpport8000Thefollowingissampleoutputfromthedebugipnatsipcommand:Device#debugipnatsipMay2314:11:17.
243IST:NAT-L4F:settingALG_NEEDEDflaginsubblockforSIPmessageMay2314:11:17.
243IST:NAT-ALG:lookup=0l7_bytes_recd=509appl_type=7May2314:11:17.
243IST:NAT-ALG:CompleteSIPMessageheaderofsize:376May2314:11:17.
243IST:NAT-ALG:Messagebodylength:133May2314:11:17.
243IST:NAT-ALG:TotalSIPmessagelength:509May2314:11:17.
243IST:NAT-ALG:afterstatemachine:May2314:11:17.
243IST:NAT-ALG:l7_bytes_recd=509May2314:11:17.
243IST:NAT-ALG:remaining_hdr_sz=0May2314:11:17.
243IST:NAT-ALG:remaining_payl_sz=0May2314:11:17.
243IST:NAT-ALG:tcp_alg_state=0May2314:11:17.
243IST:NAT-ALG:complete_msg_len=509May2314:11:17.
243IST:NAT-SIP-TCP:NumberofSIPmessagesreceived:1May2314:11:17.
243IST:NAT:SIP:[0]processingINVITEmessageMay2314:11:17.
243IST:NAT:SIP:[0]register:0door_created:0May2314:11:17.
243IST:NAT:SIP:[0]translatedembeddedaddress192.
168.
122.
3->10.
1.
1.
1May2314:11:17.
243IST:NAT:SIP:[0]register:0door_created:0May2314:11:17.
243IST:NAT:SIP:[0]translatedembeddedaddress192.
168.
122.
3->10.
1.
1.
1May2314:11:17.
243IST:NAT:SIP:[0]register:0door_created:0May2314:11:17.
243IST:NAT:SIP:[0]register:0door_created:0May2314:11:17.
243IST:NAT:SIP:ContactheaderfoundMay2314:11:17.
243IST:NAT:SIP:TryingtofindexpiresparameterMay2314:11:17.
243IST:NAT:SIP:[0]translatedembeddedaddress192.
168.
122.
3->10.
1.
1.
1May2314:11:17.
243IST:NAT:SIP:[0]register:0door_created:0May2314:11:17.
243IST:NAT:SIP:[0]messagebodyfoundMay2314:11:17.
243IST:NAT:SIP:MediaLinespresent:1May2314:11:17.
243IST:NAT:SIP:Translatedglobalm=(192.
168.
122.
3,6000)->(10.
1.
1.
1,6000)May2314:11:17.
243IST:NAT:SIP:old_sdp_len:133new_sdp_len:130May2314:11:17.
243IST:l4f_sendreturns497bytesMay2314:11:17.
243IST:CompletebufferwrittentoproxyAdditionalReferenceforNATTCPSIPALGSupportRelatedDocumentsDocumentTitleRelatedTopicCiscoIOSMasterCommandList,AllReleasesCiscoIOScommandsCiscoIOSIPAddressingServicesCommandReferenceNATcommandsNATTCPSIPALGSupport7NATTCPSIPALGSupportConfigurationExamplesforNATTCPSIPALGSupportStandardsandRFCsTitleStandard/RFCSIP:SessionInitiationProtocolRFC2543TechnicalAssistanceLinkDescriptionhttp://www.
cisco.
com/cisco/web/support/index.
htmlTheCiscoSupportandDocumentationwebsiteprovidesonlineresourcestodownloaddocumentation,software,andtools.
UsetheseresourcestoinstallandconfigurethesoftwareandtotroubleshootandresolvetechnicalissueswithCiscoproductsandtechnologies.
AccesstomosttoolsontheCiscoSupportandDocumentationwebsiterequiresaCisco.
comuserIDandpassword.
FeatureInformationforNATTCPSIPALGSupportThefollowingtableprovidesreleaseinformationaboutthefeatureorfeaturesdescribedinthismodule.
Thistablelistsonlythesoftwarereleasethatintroducedsupportforagivenfeatureinagivensoftwarereleasetrain.
Unlessnotedotherwise,subsequentreleasesofthatsoftwarereleasetrainalsosupportthatfeature.
UseCiscoFeatureNavigatortofindinformationaboutplatformsupportandCiscosoftwareimagesupport.
ToaccessCiscoFeatureNavigator,gotowww.
cisco.
com/go/cfn.
AnaccountonCisco.
comisnotrequired.
Table3:FeatureInformationforNATTCPSIPALGSupportFeatureInformationReleasesFeatureNameTheNATTCPSIPALGSupportfeatureallowsembeddedmessagesoftheSessionInitiationProtocol(SIP)passingthroughadevicethatisconfiguredwithNetworkAddressTranslation(NAT)tobetranslatedandencodedbacktothepacket.
Anapplication-layergateway(ALG)isusedwithNATtotranslatetheSIPorSessionDescriptionProtocol(SDP)messages.
15.
3(1)TNATTCPSIPALGSupportNATTCPSIPALGSupport8NATTCPSIPALGSupportFeatureInformationforNATTCPSIPALGSupport
星梦云怎么样?星梦云好不好,资质齐全,IDC/ISP均有,从星梦云这边租的服务器均可以备案,属于一手资源,高防机柜、大带宽、高防IP业务,一手整C IP段,四川电信,星梦云专注四川高防服务器,成都服务器,雅安服务器 。官方网站:点击访问星梦云官网活动方案:1、成都电信年中活动机(封锁UDP,不可解封):机房CPU内存硬盘带宽IP防护流量原价活动价开通方式成都电信优化线路4vCPU4G40G+50...
百纵科技:美国云服务器活动重磅来袭,洛杉矶C3机房 带金盾高防,会员后台可自助管理防火墙,添加黑白名单 CC策略开启低中高.CPU全系列E52680v3 DDR4内存 三星固态盘列阵。另有高防清洗!百纵科技官网:https://www.baizon.cn/联系QQ:3005827206美国洛杉矶 CN2 云服务器CPU内存带宽数据盘防御价格活动活动地址1核1G10M10G10G38/月续费同价点击...
速云怎么样?速云是一家国人商家。速云商家主要提供广州移动、深圳移动、广州茂名联通、香港HKT等VDS和独立服务器。目前,速云推出深圳独服优惠活动,机房为深圳移动机房,购买深圳服务器可享受5折优惠,目前独立服务器还支持申请免费试用,需要提交工单开通免费体验试用,次月可享受永久8折优惠,也是需工单申请哦!点击进入:速云官方网站地址活动期限至 2021年7月22日速云云服务器优惠活动:活动1:新购首月可...
internalservererror为你推荐
ym.163.com免费企业邮箱outlookexpress系统自带的outlook express有什么用?怎么用?支付宝调整还款日花呗调整还款日算延期吗?ipad代理想买个ipad,3000至4000元左右有什么好的瞄准的拼音瞄怎么读,瞄的组词,瞄的读音,瞄的笔顺,瞄的意思zhuo爱作文:温暖的( )tumblr上不去安卓手机版steam打不开是为什么地址栏图标网站添加地址栏图标代码怎么写?chmod文件夹ubunto怎么修改文件夹权限香港服务器托管香港游戏服务器托管,哪家好?要带宽充足的
php空间租用 广东vps 什么是域名地址 淘宝抢红包攻略 lamp安装 ion uk2 国外私服 gateone 华为云主机 免费ftp站点 免费个人空间申请 admit的用法 世界测速 美国免费空间 中国网通测速 河南移动梦网 服务器维护 1美元 阿里云邮箱个人版 更多