Nortel 4134 Guia Do Utilizador
Configuring global properties
91
Configuring proxy NAT
Enable Proxy NAT to allow SIP trunking to function behind a NAT. With
Proxy NAT enabled, the SIP ALG can perform multiple translations within
a single packet. The ALG performs a Static NAT translation for the SIP
header, and a NAPT translation for the SIP message body (SDP). This
results in a single firewall connection between the two call servers on port
5060, for all SIP signaling, and multiple RTP connections for media traffic
between the phones.
Proxy NAT enabled, the SIP ALG can perform multiple translations within
a single packet. The ALG performs a Static NAT translation for the SIP
header, and a NAPT translation for the SIP message body (SDP). This
results in a single firewall connection between the two call servers on port
5060, for all SIP signaling, and multiple RTP connections for media traffic
between the phones.
Procedure steps
Step
Action
1
To enter configuration mode, enter:
configure terminal
2
To specify global firewall configuration, enter:
firewall global
3
To configure proxy NAT, enter:
proxy-nat <A.B.C.D>
—End—
Configuring global timeout
Configuring general timeouts
Set the default timeout values for protocols like TCP, UDP, ICMP, FTP and
DNS.
DNS.
Procedure steps
Step
Action
1
To enter configuration mode, enter:
configure terminal
2
To specify global firewall configuration, enter:
firewall global
3
To specify timeout configuration, enter:
timeout
4
To configure general timers , enter:
general {tcp | udp | tcp-reset | icmp | ftp-inactivity
| dns-inactivity} <0-65535>
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.