Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
798
Views
0
Helpful
1
Replies

Blocking SIP traffic on Cisco ASA running 8.2

HUZEFA-786_2
Level 1
Level 1

‎10-02-2013 12:01 AM - edited ‎03-11-2019 07:45 PM

Hi,

We have a strange issue with Cisco ASA where the SIP traffic is NOT been dropped.

We configured the rules top drop TCP and UDP SIP traffic from certain IP addresses, but for some reason the calls are successful.

The packet tracer shows the traffic is been dropped but in reality the calls pass therough the firewall and are successfull.

Therer's no assymetric routing, all the traffic is been passed through the firewall. We verified this by rebooting the firewall during IOS (8.4) upgrade and during that period the calls were not successful.

This behaviour only happens with SIP traffic, other traffic like UDP, ICMP are successfully blocked.

We even tried service policy inspection but it didn't help either.

Any help on this will be appreciated.   

Labels:
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎10-12-2013 12:41 PM

Hello,

You sure the traffic is not being innittiated on the other side and the SIP inspection is kicking in????

Doble check that via a show policy-map

Remember to rate all of my posts

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card