Solved

Disable Sip alg on FortiGate 60D

Posted on 2016-09-05
8
562 Views
Last Modified: 2016-11-16
Hi

Ive been asked to disable the protocol; SIP ALG on our firewall, from what I can see it cannot be done by ticking a box within the interface so looks like its done by the CLI?

Any advice would be great.

Thanks
SycamoreIT
0
Comment
Question by:SycamoreIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
  • 2
8 Comments
 
LVL 22

Accepted Solution

by:
Jakob Digranes earned 300 total points (awarded by participants)
ID: 41784894
config system settings
set sip-helper disable
set sip-nat-trace disable


reboot
0
 

Author Comment

by:SycamoreIT
ID: 41784970
So they are the commands I enter into the CLI?
0
 

Author Comment

by:SycamoreIT
ID: 41784971
Is there a way I can see what the setting is currently set at?
0
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

 
LVL 22

Expert Comment

by:Jakob Digranes
ID: 41784985
config system settings
view sip-helper
0
 

Author Comment

by:SycamoreIT
ID: 41786123
When I checked to see if the protocol is on using the above command, I get the following result.

Unknown Action 0

What does that mean?
0
 

Author Comment

by:SycamoreIT
ID: 41786129
When I entereed the commands to disable the sip alg, these were accepted by the CLI.

So once I can work out how to display what status the sip alg, I should be all sorted.
0
 
LVL 30

Assisted Solution

by:masnrock
masnrock earned 200 total points (awarded by participants)
ID: 41863918
Here's an article that explains commands to SIP different functions of VoIP on a Fortigate that can be disabled depending on your requirements, including what Jakob had already provided:

http://www.3cx.com/blog/docs/disable-sip-alg-on-fortigate/
0
 
LVL 30

Expert Comment

by:masnrock
ID: 41889411
Question answered
0

Featured Post

IoT Devices - Fast, Cheap or Secure…Pick Two

The IoT market is growing at a rapid pace and manufacturers are under pressure to quickly provide new products. Can you be sure that your devices do what they're supposed to do, while still being secure?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my office we had 10 Cisco 7940G IP phones that were useless as they were showing PROTOCOL APPLICATION INVALID when started. I searched through Google and worked for a week continuously on those phones, and finally got them working. This is a di…
Although VoiceOver IP has been around for a while, internet connections have only recently become fast enough to provide good call quality. Now, VoIP has become a real option for businesses looking at ways to improve their business model. In this ar…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question