There are no specific Firewall rules you should define. As UDP ports which are used for SIP and RTP messaging are configured explicitly on user agents.
In the majority of cases UAs use random RTP port from a predefined range for sending/receiving RTP messages and RTP stream is sent directly between endpoints, thus it is not feasible to foresee what source (incoming packets) and destination (outgoing packets) IP address will be used in a call. We recommend you consider not blocking ports which are used for sending/receiving RTP stream (>1024) and explicitly allow receiving packets from our SIP server IP address (source port 5060) and outgoing packets to our SIP server Ip address (destination port 5060).
Please also note, that the SIP ALG feature should be disabled.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article