SIP-ALG: Access Control

In the SIP-ALG Action Access Control configuration, you can create a list of users who are allowed to send VoIP network traffic.

Screen shot of the Access Control settings
SIP-ALG Action access control configuration in Fireware Web UI

Screen shot of the SIP-ALG Action Configuration dialog box, Access Control page
SIP-ALG Action access control configuration in Policy Manager

Enable access control for VoIP

To enable the access control feature, select this check box. When enabled, the SIP-ALG allows or restricts calls based on the options you set.

Default Settings

To allow all VoIP users to start calls by default, select the Start VoIP calls check box.

To allow all VoIP users to receive calls by default, select the Receive VoIP calls check box.

To create a log message for each SIP VoIP connection that is started or received, select the adjacent Log check box.

Access Levels

To create an exception to the default settings you specified, type the Address of Record (the address that shows up in the TO and FROM headers of the packet) for the exception. This is usually a SIP address in the format [email protected], such as [email protected].

From the Access Level drop-down list, select an access level and click Add.

You can select whether to allow users to Start calls only, Receive calls only, Start and receive calls, or give them No VoIP access. These settings apply only to SIP VoIP traffic.

To delete an exception, select it in the list and click Remove.

Connections made by users who have an access level exception are logged by default. If you do not want to log connections made by a user with an access level exception, clear the Log check box adjacent to the exception.

See Also

About the SIP-ALG

SIP-ALG: General Settings

SIP-ALG: Denied Codecs