购买或续订
购买或续订
Umbrella 发布说明和公告现已在 Cisco 社区发布!点击查看详情。
取消
开启建议
自动建议可通过在您键入时建议可能的匹配,而快速缩小您的搜索结果范围。
显示结果 
搜索替代 
您的意思是: 
cancel
开始对话
2966
查看次数
10
有帮助
6
回复

ASA5520 can not support stun protocal

00u1aoou0j8E6Uxmk5d7
Level 1
Level 1

发布时间 ‎07-21-2021 05:06 AM

I have one customer, which use cisco ASA5520 , and after testing, I found that only stun protocol is not supported in their network. classic-stun can work functionally, but only stun can not work,

I am not sure why, anybody can give some advice?

 

 

stun only can see binding request, but has no binding response,

for example, customer computer is A, my machine is B, using wireshark in A, we can see A send udp stun package to B,

I can not catch udp package at machine B with tcpdump.

 

 

标签:
0 有帮助
6 条回复6

Rps-Cheers
VIP
VIP

发布时间 ‎07-21-2021 07:50 PM

What is your version? STUN has been supported since Release 9.6(2).

You can now inspect STUN traffic for WebRTC applications including Cisco Spark. Inspection opens pinholes required for return traffic.

We added or modified the following commands: inspect stun , show asp drop , show conn detail , show service-policy inspect stun .

 

Now that you can see A send udp stun package to B, is there any equipment between A and B?

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !
0 有帮助

00u1aoou0j8E6Uxmk5d7
Level 1
Level 1
回复 Rps-Cheers

发布时间 ‎07-21-2021 11:42 PM

thanks very much for replying my question

just as ilay mentioned, it should be very early version. 

 

I am not very sure that if there are any other equipment between A and B.

0 有帮助

ilay
VIP
VIP

发布时间 ‎07-21-2021 09:32 PM

STUN is supported from 9.6(2) and later versions,  And ASA 9.1(x) was the final version for the ASA 5510, 5520, 5540, 5550, and 5580. 

The ios version does not meet the requirements, so the ASA5520 does not support stun.

 

00u1aoou0j8E6Uxmk5d7
Level 1
Level 1
回复 ilay

‎07-21-2021 11:47 PM - 编辑日期 ‎07-21-2021 11:51 PM

thanks very much for replying my question.

Just confirm that ASA5520 can not support stun, does it mean that it will block stun package or just ignore it and let it go.

0 有帮助

Rps-Cheers
VIP
VIP
回复 00u1aoou0j8E6Uxmk5d7

发布时间 ‎07-22-2021 01:03 AM

OK, I'm glad that your problem is solved, you can ignore it.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !

00u1aoou0j8E6Uxmk5d7
Level 1
Level 1

‎07-21-2021 11:36 PM - 编辑日期 ‎07-21-2021 11:52 PM

@ilay thanks very much for replying my question.

 

Just confirm that ASA5520 can not support stun, does it mean that it will block stun package or just ignore it and let it go.

0 有帮助
快捷链接

浏览社区快速链接并以您的母语获取个性化内容:

发布或浏览文章 分享想法或新闻 观看我们的所有视频
Customers Also Viewed These Support Documents