Juniper SRX240
From VoIP.ms Wiki
(Difference between revisions)
| [checked revision] |
Rod (Talk | contribs)
(Created page with "Because of a NAT persistence need in the Juniper SRX series, in order to get VOIP calls to run properly, you need to get a few things done. 1. Make sure you have disabled SIP ALG...")
Newer edit →
(Created page with "Because of a NAT persistence need in the Juniper SRX series, in order to get VOIP calls to run properly, you need to get a few things done. 1. Make sure you have disabled SIP ALG...")
Newer edit →
Revision as of 17:39, 1 March 2016
Because of a NAT persistence need in the Juniper SRX series, in order to get VOIP calls to run properly, you need to get a few things done. 1. Make sure you have disabled SIP ALG before beginning. 2. In the CLI run "set security nat source interface port-overloading off" without the quotes. 3. You need to enable nat persistance in the srx's source nat transaltion config. This can be done via the gui too. Config output from CLI example:
nat {
source {
interface {
port-overloading off;
}
rule-set trust-to-untrust {
from zone trust;
to zone untrust;
rule source-nat-rule {
match {
source-address 0.0.0.0/0;
}
then {
source-nat {
interface {
persistent-nat {
permit any-remote-host;
}
