Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
412
Views
5
Helpful
1
Replies

iOS Zone Based Firewall (ZBFW) drops SIP calls after 20 minutes

4rmorris
Level 1
Level 1

‎09-09-2018 01:31 PM - edited ‎02-21-2020 08:12 AM

Hi all,

I've got a Cisco 2811 router running 15.1.4 with an SDM configured ZBFW.  Behind it there are ATAs connecting phones to a cloud-based VoIP service provider.  So no CUCM or CME on the router, just pass-through SIP registrations to the SP and then RTP streams from the ATAs to the SP SBCs.

 

What happens is, every call drops after exactly 20 minutes.  Looking through the config and documentation, I couldn't find any SIP specific config or timeouts, and no absolute timeouts for UDP or TCP (lots of idle timeout config, but the calls are not idle!).

 

There's a SIP inspect statement in the class-maps, but I don't see this used in a policy-map and I don't see any hits in the show zone security output.

 

Any thoughts on options to avoid these connections being broken?

 

Thanks,

 

Ryan

Labels:
Preview file
16 KB
0 Helpful
1 Reply 1

Mohammed al Baqari
Level 11
Level 11

‎09-10-2018 12:13 AM

I think you need to contact your voip provider. If its exactly 20-mins, it
can be the session timeout value set in your call setup.

ZBFW has nothing to do with this. Even if ZBFW blocks SIP after call being
established, audio will be preserved and won't drop until one of the
parties disconnect.
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card