I have implemented PIX in between A & B router and now all my traffic(voice & data)passes thru pix.Rtr A is connected to my network and Rtr B is connected to my customer.Rtr A is inside and B is customer DMZ.Im having problems with voice.Are there any known issues of voice passing thru pix.PIX is 515E running Version 7.0(2)
{ 3 comments… read them below or add one }
Obviously access from DMZ to Inside will be blocked by default, unless you specify specific ports.
When you say VOIP, is it pure H323 traffic, is there any other protocol involved, Is there callmanager involved ??
For H323 signalling, you should open port TCP 1720.
For RTP payload (VOIP payload) open ports UDP 16384 through 32767.
You will want to bypass VOIP traffic from dynamic NAT and put a static mapping between inside and outside addresses.
Additionally enable fixup commands for H323, H225 etc.
Also check this link.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00801fc74a.shtml
I got your point.actually tht device has been configured by our vendor an i dont find anything as mentioned by you.im pasting my config for ur review.please advice me what needs to be done so as to ensure everything works fine an no further voice issues are there.
I just came to knw that fixup commands are not relevant in ver 7.0 Is there anything else which seems missing in my config or some other commands which might be necessary for the PIX to smoothly process voice traffic.
You must log in to post a comment.