Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Blocking SIP traffic on Cisco ASA running 8.2

Hi,

We have a strange issue with Cisco ASA where the SIP traffic is NOT been dropped.

We configured the rules top drop TCP and UDP SIP traffic from certain IP addresses, but for some reason the calls are successful.

The packet tracer shows the traffic is been dropped but in reality the calls pass therough the firewall and are successfull.

Therer's no assymetric routing, all the traffic is been passed through the firewall. We verified this by rebooting the firewall during IOS (8.4) upgrade and during that period the calls were not successful.

This behaviour only happens with SIP traffic, other traffic like UDP, ICMP are successfully blocked.

We even tried service policy inspection but it didn't help either.

Any help on this will be appreciated.   

1 REPLY

Blocking SIP traffic on Cisco ASA running 8.2

Hello,

You sure the traffic is not being innittiated on the other side and the SIP inspection is kicking in????

Doble check that via a show policy-map

Remember to rate all of my posts

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
298
Views
0
Helpful
1
Replies
CreatePlease login to create content