Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Allow SIP on multiple ports, not only 5060 (ASA 5505)

We've read everything about inspecting SIP packets and allowing them to pass through on port 5060, the default SIP port. However, our setup requires the ASA 5505 to allow SIP on ports 5060, 5160 and 5260.

Is this possible with the ASA 5505?

If it's not, it would be a blocking issue for us to move forward with ASA appliances. We are currently investigating in a lab environment and really having difficulties configuring it to facilitate full SIP functionality.

Additional information that our provider gave us is that we would have to allow

  • Port: 5060 / UDP (SIP)
  • Port: 5004 / UDP (RTP)
  • Port: 3478 UDP (STUN)

Any help is greatly appreciated.

Best,

-Ralf

1 REPLY

Allow SIP on multiple ports, not only 5060 (ASA 5505)

Hello Ralf,

The ASA does not have any inspection available for the STUN protocol, it does have one for the SIP traffic, so my recomendation would be to inspect the SIP protocol and open on an ACL port 5004 and port 3478. RTP sessions will be open dynamically from the SIP inspection.

Regards,

Julio

Looking for some Networking Assistance? Contact me directly at jcarvaja@laguiadelnetworking.com I will fix your problem ASAP. Cheers, Julio Carvajal Segura http://laguiadelnetworking.com
1247
Views
0
Helpful
1
Replies
CreatePlease login to create content