[7.450][QUESTION][ANSWERED] Why does ASG not black SIP traffic?

aaaaaaaaaaaaaaaaa

0 nitehawk over 16 years ago

Hmmm, your sip phone software seems to connect on port 443 which is definitely not blocked by Astaro because it's used for SSL VPN and so on.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 utm_kid over 16 years ago in reply to nitehawk

aaaaaaaaaaaaaaaaaaaaa
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 RFCat_vk_01 over 16 years ago in reply to utm_kid

Hi utm_kid,
the ASG already has the ability to do what you want, if I understand your posting correctly.
You do not allow your SIP phone to use the http proxy. If you SIP phone is a softphone on a PC, then you have a problem because you can't block 443 without blocking some of your PC access.

You could try changing the http proxy to standard and then configure you SIP phone to use a different port for the secure function.

Being a SIP phone it originates all the traffic, so it must be making offers for other SIP devices to talk to it. If you are using VOIP security then limit the destinations that your SIP phone can register/talk to.

The SIP Phone probably shouldn't be using the http proxy anyway due to the packet lag through the proxy.

Ian M
You can use the http proxy classifications to block access to external proxies if you so desire.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

0 Astaro Beta Bot over 16 years ago in reply to RFCat_vk_01

Astaro Beta Report
--------------------------------
Version: 7.450
Type: QUESTION
State: ANSWERED
Reporter: utm_kid
Contributor: 
MantisID: 
--------------------------------