Manualshelf

User's Manual

ManualsBrandsAvaya ManualsGatewayAvaya B5800 Branch Gateway Manager
141142143144145146147148149150
Avaya Branch Gateway Manager 10.0 Page 150
15-601011 Issue 29r (Friday, November 02, 2012)B5800 Branch Gateway
· Port Restricted Cone NAT
A port restricted cone NAT is like a restricted cone NAT, but the restriction includes port numbers. Specifically, an
external host can send a packet, with source IP address X and source port P, to the internal host only if the internal
host had previously sent a packet to IP address X and port P. SIP packets needs to be mapped. Keep-alives must be
sent to all ports that will be the source of a packet for each ITSP host IP address. If this type of NAT/Firewall is
detected or manually selected, no warning will be displayed for this type of NAT. However, some Port Restricted
NAT's have been found to be more symmetric in behavior, creating a separate binding for each opened Port, if this is
the case the manager will display a warning ‘Communication is not possible unless the STUN server is supported on
same IP address as the ITSP’ as part of the manager validation.
· Static Port Block:
Use the RTP Port Number Range specified on the VoIP tab without STUN translation. Those ports must be fixed
as open on any NAT firewall involved.
· Binding Refresh Time (seconds): Default = 0 (Never). Range = 0 to 3600 seconds.
Having established which TCP/UDP port number to use, through either automatic or manual configuration, the system
can send recurring ‘SIP Options requests’ to the remote proxy terminating the trunk. Those requests will keep the port
open through the firewall. Requests are sent every x seconds as configured by this field.
· Note: If a binding refresh time has not been set you may experience problems receiving inbound SIP calls as they
are unable to get through the Firewall. In these circumstances make sure that this value has been configured.
· Public IP Address: Default = 0.0.0.0
This value is either entered manually or discovered by the Run STUN process. If no address is set, the system LAN1
address is used.
· Public Port: Default = 0
This value is either entered manually or discovered by the Run STUN process.
· Run STUN
This button tests STUN operation between the system LAN and the STUN Server IP Address set above. If successful
the results are used to automatically fill the remaining fields with appropriate values discovered by the system. Before
using Run STUN the SIP trunk must be configured.
· When this option is used, a information icon is shown against the fields to indicate that the values were
automatically discovered rather than manually entered.
· Run STUN on startup: Default = Off
This option is used in conjunction with values automatically discovered using Run STUN. When selected, the system will
rerun STUN discovery whenever the system is rebooted or connection failure to the SIP server occurs.
147