I,ve been trying to run CSS11500 07.40.2.02 one-armed DNAT+SNAT with RTP udp 10000-30000.
I need to nat client ip addresses.
service serv1
ip add 90.1.1.1
protocol udp
active
------
owner
vip add 10.1.1.1
protocol udp
add serv serv1
active
-------
group
vip add 81.1.1.1
portmap disable
add destination service serv1
active
DNAT and SNAT is OK:
IP client > CSS: 10.x.x.x:10000 > VIP 10.1.1.1:20000
IP SNAT> internet: SNAT 81.1.11:10000 > 90.1.1.1:20000
but the response:
Internet> CSS: 90.1.1.1:20000 >81.1.1.1:10000
is dropped in CSS (verified)
whithout "portmap disable", works, but the source port of client is natted...
I´d appreciate any suggestions about this problem.
Regards,