H.323-ALG: Access Control
In the H.323-ALG access control configuration, you can create a list of users who are allowed to send VoIP network traffic.
H.323-ALG access control configuration in Fireware Web UI:
H.323-ALG access control configuration in Policy Manager
Enable access control for VoIP
Select this check box to enable the access control feature. When enabled, the H.323-ALG allows or restricts calls based on the options you set.
To enable all VoIP users to start calls by default, select the Start VoIP calls check box.
To enable all VoIP users to receive calls by default, select the Receive VoIP calls check box.
To create a log message for each H.323 VoIP connection started or received, select the adjacent Log check box.
To create an exception to the default settings you specified, in the Address of Record text box, type the address that shows up in the TO and FROM headers of the packet for the exception. This is usually an H.323 address in the format [email protected], such as [email protected].
From the Access Levels drop-down list, select an access level and click Add.
You can allow users to Start calls only, Receive calls only, Start and receive calls, or give them No VoIP access. These settings apply only to H.323 VoIP traffic.
To delete an exception, select it in the list and click Remove.
Connections made by users who have an access level exception are logged by default. If you do not want to log connections made by a user with an access level exception, clear the Log check box adjacent to the exception name in the list.