So i've done it right then (i did both UDP and TCP) ? Would this block port 5060 completely by any chance?

Great, thanks

Sorry, just realised. Are you saying YES to me doing it right or YES to it would block port 5060 altogether?

Thanks

Right so as i'm not great at VOIP etc then i thought that SIG ALP was just a sort of inspection on SIP packets that sometimes modifies it and therefore causes issues so i was under the impression that this would disable the "ALG" inspection of the SIP packet but still let the packet through ?

Is there any way of disabling the ALG side but still let the SIP packet through or am i completely misunderstanding this ?

Thanks

---

@WonderfulIT wrote:

or am i completely misunderstanding this ?

 

---

You're over-thinking this.  

When applied, the two lines disables SIP ALG.  Period.  

Factory default the AP and observe what it's doing.  

I think i am then....so if you disable SIP ALG then how does a device communicate on port 5060 ? From what you're saying these commands BLOCK that port completely ?

---

@wilson419 wrote:

if you disable SIP ALG then how does a device communicate on port 5060

---

It won't.  TCP and UDP 5060 are blocked so nothing should be talking to that port.  NOTHING.

Right, that's clear now then so the part i obviously don't understand is that when comms companies ask us to disable SIP ALG on a line (which seems to becoming a common request) then if the device on the end of that communicates on port 5060 then this will just block the whole device ?

On some of the Drayteks we use there's an option to disable SIP ALG and this seems to disable it but still allow that device to work on port 5060 so is there anything else i would need to do on a Cisco such as adding a new NAT rule or something or is it a case of if you disable SIP ALG then there's no chance of getting anything to work on port 5060 ?