Manualshelf

R3303-HP HSR6800 Routers Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution
361362363364365366367368369370
356
SIP/H.323 ALG configuration example
H.323 ALG configuration is similar to SIP ALG configuration. The following example describes SIP ALG
configuration.
The example describes only ALG configurations, assuming other required configurations on the server
and client have been done.
Network requirements
As shown in Figure 119, a company uses the private network segment 192.168.1.0/24, and has four
public network addresses: 5.5.5.1, 5.5.5.9, 5.5.5.10, and 5.5.5.11. SIP UA 1 is on the internal network
and SIP UA 2 is on the external network.
Configure NAT and ALG on the router to enable SIP UA 1 and SIP UA 2 to communicate by using their
aliases, and to enable SIP UA 1 to select an IP address from the range 5.5.5.9 to 5.5.5.11 when
registering with the SIP server on the external network.
Figure 119 Network diagram
Configuration procedure
# Configure the address pool and ACL.
<Router> system-view
[Router] nat address-group 1 5.5.5.9 5.5.5.11
[Router] acl number 2001
[Router-acl-basic-2001] rule permit source 192.168.1.0 0.0.0.255
[Router-acl-basic-2001] rule deny
[Router-acl-basic-2001] quit
# Enable ALG for SIP.
[Router] alg sip
# Configure NAT.
[Router] interface gigabitethernet 3/0/1
[Router-GigabitEthernet3/0/1] nat outbound 2001 address-group 1
NBT ALG configuration example
The example describes only ALG configuration, assuming other required configurations on the server
and client have been done.
Network requirements
As shown in Figure 120, a company using the private network segment 192.168.1.0/24 wants to provide
NBT services to the outside.