• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1537
  • Last Modified:

Disable Sip alg on FortiGate 60D

Hi

Ive been asked to disable the protocol; SIP ALG on our firewall, from what I can see it cannot be done by ticking a box within the interface so looks like its done by the CLI?

Any advice would be great.

Thanks
SycamoreIT
0
SycamoreIT
Asked:
SycamoreIT
  • 4
  • 2
  • 2
2 Solutions
 
Jakob DigranesSenior ConsultantCommented:
config system settings
set sip-helper disable
set sip-nat-trace disable


reboot
0
 
SycamoreITAuthor Commented:
So they are the commands I enter into the CLI?
0
 
SycamoreITAuthor Commented:
Is there a way I can see what the setting is currently set at?
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

 
Jakob DigranesSenior ConsultantCommented:
config system settings
view sip-helper
0
 
SycamoreITAuthor Commented:
When I checked to see if the protocol is on using the above command, I get the following result.

Unknown Action 0

What does that mean?
0
 
SycamoreITAuthor Commented:
When I entereed the commands to disable the sip alg, these were accepted by the CLI.

So once I can work out how to display what status the sip alg, I should be all sorted.
0
 
masnrockCommented:
Here's an article that explains commands to SIP different functions of VoIP on a Fortigate that can be disabled depending on your requirements, including what Jakob had already provided:

http://www.3cx.com/blog/docs/disable-sip-alg-on-fortigate/
0
 
masnrockCommented:
Question answered
0

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

  • 4
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now