Configuring NAT Translation per IP Interface
The NAT Translation table lets you configure up to 32 network address translation (NAT) rules for translating source IP addresses into NAT IP addresses (global - public) when the device is located behind NAT. The device's NAT traversal mechanism replaces the source IP address of SIP messages sent from a specific
If the device is configured with two network interfaces, for example, one LAN and one WAN, only one NAT rule is required and without specifying ports. This rule is defined with the network interface representing the WAN and with a public IP address. If the device is configured with only one network interface (e.g., "Voice") and you have an SRD configured for WAN and LAN, then you need to specify ports to differentiate between these SRDs. In such a scenario, the device replaces the source IP address only for messages sent from the WAN SRD; not from the LAN SRD.
The following procedure describes how to configure NAT translation rules through the Web interface. You can also configure it through ini file [NATTranslation] or CLI (configure network > nat-translation).
| ➢ | To configure NAT translation rules: |
| 1. | Open the NAT Translation table (Setup menu > IP Network tab > Core Entities folder > NAT Translation). |
| 2. | Click New; the following dialog box appears: |
| 3. | Configure a NAT translation rule according to the parameters described in the table below. |
| 4. | Click Apply, and then save your settings to flash memory. |
NAT Translation Table Parameter Descriptions
|
Parameter |
Description |
|---|---|
|
Source |
|
|
'Index' index [NATTranslation_Index] |
Defines an index number for the new table row. Note: Each row must be configured with a unique index. |
|
'Source Interface' src-interface-name [NATTranslation_SrcIPInterfaceName] |
By default, no value is defined. To configure aliases, refer to the section on the alias command in the CLI Reference Guide. |
|
'Source Start Port' src-start-port [NATTranslation_SourceStartPort] |
Defines the optional starting port range (0-65535) of the IP interface, used as matching criteria for the NAT rule. If not configured, the match is done on the entire port range. Only IP addresses and ports of matched source ports will be replaced. |
|
'Source End Port' src-end-port [NATTranslation_SourceEndPort] |
Defines the optional ending port range (0-65535) of the IP interface, used as matching criteria for the NAT rule. If not configured, the match is done on the entire port range. Only IP addresses and ports of matched source ports will be replaced. |
|
Target |
|
|
'Target IP Address' target-ip-address [NATTranslation_TargetIPAddress] |
Defines the global (public) IP address. The device adds the address in the outgoing packet to the SIP Via header, Contact header, 'o=' SDP field, and 'c=' SDP field. |
|
'Target Start Port' target-start-port [NATTranslation_TargetStartPort] |
Defines the optional starting port range (0-65535) of the global address. If not configured, the ports are not replaced. Matching source ports are replaced with the target ports. This address is set in the SIP Via and Contact headers and in the 'o=' and 'c=' SDP fields. |
|
'Target End Port' target-end-port [NATTranslation_TargetEndPort] |
Defines the optional ending port range (0-65535) of the global address. If not configured, the ports are not replaced. Matching source ports are replaced with the target ports. This address is set in the SIP Via and Contact headers and in the 'o=' and 'c=' SDP fields. |