SIP support VoIP and SIP
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903 505
http://docs.fortinet.com/ • Feedback
SIP support
The Session Initiation Protocol (SIP) is a signaling protocol used for establishing and
conducting multiuser calls over TCP/IP networks using any media. Due to the complexity
of the call setup, not every firewall can handle SIP calls correctly, even if the firewall is
stateful. The FortiGate unit has a pre-defined SIP firewall service that tracks and scans
SIP calls and makes adjustments, to both the firewall state and call data, to ensure a
seamless call is established through the FortiGate unit regardless of its operation mode,
NAT, route, or transparent. FortiGate units support SIP RFC 3261.
You can use protection profiles to control the SIP protocol and SIP call activity.
A statistical summary of SIP protocol activity is also available for managing SIP use.
This section includes some information about VoIP and SIP. It also describes how FortiOS
SIP support works and how to configure the key SIP features. For more configuration
information, see the FortiGate CLI Reference.
The FortiGate unit supports the following SIP features:
• stateful SIP tracking
• RTP Pinholing
• request control
• rate limiting
• event logging
• communication archiving
• NAT IP preservation
• client connection control
• register response acceptance
• Application Level Gateway (ALG) control
• SIP stateful HA
• IPv6 support
This section describes:
• VoIP and SIP
• The FortiGate unit and VoIP security
• How SIP support works
• Configuring SIP
VoIP and SIP
SIP is an IETF protocol for establishing Voice over IP (VoIP) connections. Many VoIP
networks choose SIP to handle multimedia sessions between endpoints. This lightweight
text-based signaling protocol is transported over either Transmission Control Protocol
(TCP) or User Datagram Protocol (UDP). SIP uses invitations to create Session
Description Protocol (SDP) messages that allow participants to agree on a set of
compatible media types.
SIP applications are based on a client-server structure and support user mobility with two
operating modes: proxy and redirect.
To Next Page
Loading...
Need help?
General