Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Re : NAT required ?

Status
Not open for further replies.
blackberry1980

blackberry1980

Technical User
Jan 22, 2009
98
GB
Can someone explain why it is a requirement for enabling nat on the client side router of a teleworker set ?
What would result if it werent enabled ?

Just curious
 
Sort by date Sort by votes
If your phone is obtaining a public IP address and can reach TW gateway then there is no need in NAT. In 99.99% of all installatins clients accessing Internet through some sort of router with a single public address and a private network behind NAT. So this requirement placed just in case when a user will demend to make his/her phone work without access to the public Internet. At least I get these requests once in a while.
 
Upvote 0 Downvote
The problem i am having is that teleworker phones are getting intermittant one way audio during a call. In the beggining of a call call 2 way transmission is ok but later into the call it turns into one way trans.

Any thoughts/suggestions on this ?
 
Upvote 0 Downvote
Bad or overloaded connection, bad or low performance client router.
 
Upvote 0 Downvote
you need the inside NAT so that the media streams from internal phones to a Teleworker phones stream through the Teleworker server. It has to be this way for securit and also to allow for a phone to be moved from your home to the office without the need to change the IP address (more for softphones)

So yes without the inside NAT you will experience one way transmission when installed i server only in the DMZ

Hope that helps
 
Upvote 0 Downvote
Mitelmatt, that would be incorrect. In properly configured network it doesn't matter. The only difference that TW server can detect when multiple phones coming in from the same public address and enable local streaming, so media streams don't go through the server but from one local phone to another local phone.
 
Upvote 0 Downvote
sorry slapin have a doc from Mitel and experience that when NAT is involved that is the case

Also you seem to misunderstand, i agree that local streaming for multiple phones at a remote site. What i'm talking about is when a phone on a local lan (i.e office hq) talks to a home worker and the teleworker is Nated, then the LAN phones MUST talk to the teleworker's external address not internal address.
 
Upvote 0 Downvote
FYI, this may help

From Article 05-6050-00009 entitled Network Address Translation for Teleworker:

"Network address translation must be performed on the customer's firewall between the external interface and the DMZ. This allows the Teleworker server's public address to be translated to it's address within the DMZ.

Network address translation must also be performed between the internal and DMZ network interface. The ICP and IP sets located on the internal network stream to the Teleworker server's public address located on the external firewall interface. This address must then be translated to the IP address of the Teleworker server in the DMZ by the firewall. Without this configuration, one way transmission will be experienced in the direction of internal IP phones to the remote Teleworker IP devices.

The Teleworker server has been designed to work in this way for 2 main reasons:-

1)Internal and Teleworker sets stream to the same IP address (public routable IP address). Therefore, sets do not need to be internally reprogrammed depending on whether they're at home or at work.

2)Because they always stream to the same IP address, the Teleworker server cannot know where they are physically located, so it handles all calls in the same way.
 
Upvote 0 Downvote
And why I have to place external TW interface behind a wirewall and introduce additional delay and jitter? TW server has pretty good local firewall. This manual built for standard DMZ deployment when company polycy doesn't allow any servers to be exposed to the Internet. If it is not the case there is no need in NAT, TW server can have globaly routable public IP. TW phones while in the office will talk to external IP and local office phones will communicate with internal interface of the server. Obviously standard NAT has to be set for the office network providing access to the Internet.
 
Upvote 0 Downvote
slapin,

Agree but i think really it depends on your set up. Each site could be different.

But it is an answer tas to why you need an inside NAT under certain cicumstances.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

kwbMitel
  • Locked
  • Question
Another SX-2000 issue re: "Sanity Checks"
Replies
3
Views
109
nytalkin
nytalkin
StardataMitel
  • Locked
  • Question
Re-IP a Primary Controller
Replies
1
Views
118
Billz66
Billz66
Tinos
  • Locked
  • Question
Bandwidth required for remote site
Replies
4
Views
81
Valamagules
Valamagules
jsaad
  • Question
Reminder call
Replies
5
Views
355
jsaad
jsaad
A
  • Question
Hardware reset for Unify OpenScape Business x8
Replies
1
Views
52
sbcsu
sbcsu

Part and Inventory Search

Sponsor

Back
Top