EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #878 background imageLoading...
Page #878 background image
38-32
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 38 Configuring Inspection for Voice and Video Protocols
SIP Inspection
Hide server’s and endpoint’s IP addresses: Disabled.
Mask software version and non-SIP URIs: Enabled.
Ensure that the number of hops to destination is greater than 0: Enabled.
RTP conformance: Enforced.
Limit payload to audio or video, based on the signaling exchange: Yes
SIP conformance: Drop packets that fail state checking and packets that fail header validation.
–
Default Level—Sets the security level back to the default.
• Details—Shows additional filtering, IP address privacy, hop count, RTP conformance, SIP
conformance, field masking, and inspections settings to configure.
Modes
The following table shows the modes in which this feature is available:
Add/Edit SIP Policy Map (Details)
The Add/Edit SIP Policy Map pane lets you configure the security level and additional settings for SIP
application inspection maps.
Fields
• Name—When adding a SIP, enter the name of the SIP map. When editing a SIP map, the name of
the previously configured SIP map is shown.
• Description—Enter the description of the SIP map, up to 200 characters in length.
• Security Level—Shows the security level settings to configure
• Filtering—Tab that lets you configure the filtering settings for SIP.
–
Enable SIP instant messaging (IM) extensions—Enables Instant Messaging extensions. Default
is enabled.
–
Permit non-SIP traffic on SIP port—Permits non-SIP traffic on SIP port. Permitted by default.
• IP Address Privacy—Tab that lets you configure the IP address privacy settings for SIP.
–
Hide server’s and endpoint’s IP addresses—Enables IP address privacy. Disabled by default.
• Hop Count—Tab that lets you configure the hop count settings for SIP.
–
Ensure that number of hops to destination is greater than 0—Enables check for the value of
Max-Forwards header is zero.
Action—Drop packet, Drop Connection, Reset, Log.
Log—Enable or Disable.
• RTP Conformance—Tab that lets you configure the RTP conformance settings for SIP.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
••••—

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals