Solved

Disable Sip alg on FortiGate 60D

Posted on 2016-09-05
8
111 Views
Last Modified: 2016-11-16
Hi

Ive been asked to disable the protocol; SIP ALG on our firewall, from what I can see it cannot be done by ticking a box within the interface so looks like its done by the CLI?

Any advice would be great.

Thanks
SycamoreIT
0
Comment
Question by:SycamoreIT
  • 4
  • 2
  • 2
8 Comments
 
LVL 21

Accepted Solution

by:
Jakob Digranes earned 300 total points (awarded by participants)
ID: 41784894
config system settings
set sip-helper disable
set sip-nat-trace disable


reboot
0
 

Author Comment

by:SycamoreIT
ID: 41784970
So they are the commands I enter into the CLI?
0
 

Author Comment

by:SycamoreIT
ID: 41784971
Is there a way I can see what the setting is currently set at?
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 21

Expert Comment

by:Jakob Digranes
ID: 41784985
config system settings
view sip-helper
0
 

Author Comment

by:SycamoreIT
ID: 41786123
When I checked to see if the protocol is on using the above command, I get the following result.

Unknown Action 0

What does that mean?
0
 

Author Comment

by:SycamoreIT
ID: 41786129
When I entereed the commands to disable the sip alg, these were accepted by the CLI.

So once I can work out how to display what status the sip alg, I should be all sorted.
0
 
LVL 25

Assisted Solution

by:masnrock
masnrock earned 200 total points (awarded by participants)
ID: 41863918
Here's an article that explains commands to SIP different functions of VoIP on a Fortigate that can be disabled depending on your requirements, including what Jakob had already provided:

http://www.3cx.com/blog/docs/disable-sip-alg-on-fortigate/
0
 
LVL 25

Expert Comment

by:masnrock
ID: 41889411
Question answered
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Opening Ports 18 98
Block YouTube via Application Control in Fortigate 1000C 3 87
POE switch 8 32
Receiving wifi on an underground station 22 97
We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
Implementing Avaya's One-X portal is pretty painless, until you want to deploy this to the Android and iPhone clients when these clients are outside of your network. The clients will also work within your local network. Here is our experience and so…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question