×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

PIX and SIP

Unanswered Question
Jun 14th, 2001
User Badges:

Please help me to provide an example of configuration to allow SIP with SDP information traversing the PIX Firewall.


According to the PIX Release Note version 6, SIP support is enhanced to read the IP address and port number in SIP messages body, but there is no explanation of how it works and no example to set up the rules.


Any help is appreciated.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
dngo01 Tue, 06/19/2001 - 13:26
User Badges:

Thank you for your help.


Let me summarize this:


Using PIX and SIP proxy server, I can use the command "Fixup protocol sip 5060" to enable SIP support. Then, PIX will dynamically translate (NAT'ed)incoming/outgoing IP and port address contained in the SDP. There is no setup for this (NAT) translation.


Is my understanding correct?

Thanks.



mmellet Thu, 06/21/2001 - 12:16
User Badges:

It looks good to me. fixup protocol sip 5060 is on by default so the PIX should inspect the payload of the port 5060 packet and fix the NAT where applicable.

Actions

This Discussion