SIP-ALG: Access Control
In the SIP-ALG Action Access Control configuration, you can create a list of users who are allowed to send VoIP network traffic.
SIP-ALG Action access control configuration in Policy Manager
Enable access control for VoIP
To enable the access control feature, select this check box. When enabled, the SIP-ALG allows or restricts calls based on the options you set.
Default Settings
To allow all VoIP users to start calls by default, select the Start VoIP calls check box.
To allow all VoIP users to receive calls by default, select the Receive VoIP calls check box.
To create a log message for each SIP VoIP connection that is started or received, select the adjacent Log check box.
Access Levels
To create an exception to the default settings you specified, type the Address of Record (the address that shows up in the TO and FROM headers of the packet) for the exception. This is usually a SIP address in the format user@domain, such as [email protected].
From the Access Level drop-down list, select an access level and click Add.
You can select whether to allow users to Start calls only, Receive calls only, Start and receive calls, or give them No VoIP access. These settings apply only to SIP VoIP traffic.
To delete an exception, select it in the list and click Remove.
Connections made by users who have an access level exception are logged by default. If you do not want to log connections made by a user with an access level exception, clear the Log check box adjacent to the exception.