-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
VoIP: In what VoIP, Streaming Media, scenario should SIP/H323 transformations be enabled?
03/26/2020 
101 People found this article helpful
485,519 Views
Description
VoIP: In what VoIP, Streaming Media, scenario should SIP/H323 transformations be enabled?
Resolution
Overview:
Enabling or disabling transformation will resolve the two of the three VoIP/Streaming media problems. Please review Required Basic Information for Successful Troubleshooting of Voice over IP Issues
- Not being able to register
- Missing media
Enabling or disabling transformation is mainly determined by where the servers are located, and by where the endpoints, communication devices, or located.
- Enable transformations if the server, PBX or Proxy, is on the internet, and the devices are behind the firewall.
- Disable transformations if the server and endpoints are behind the firewall, and the PBX talks to the outside world, VoIP provider. Using enhanced firmware: create the needed address objects, NAT policies, and access rule(s) for the server. It maybe necessary to create an outbound rule for the registration port to adjust the UDP timeout value from the default of thirty seconds from the PBX LAN address to WAN. The adjusted timeout should be 120 seconds more than the registration timeout configured on the server. Service groups will reduce the amount of rules needed. If behind a firewall using standard firmware follow the normal rules creation for all ports needed allowing access to the internal address. Standard does not have the option to adjust UDP timeout. Transformation enabled may work, depending on the vendor's implementation of the RFC.
- Disable transformations if the communication is only through VPN tunnels.
- If the configuration is a mesh of VPN communication, and public sip providers, disable transformations on the remote, and configure accordingly on the main site. If provider has different requirements.
- Often when disabling or enabling a transformation option requires a reboot of the firewall.
Related Articles
- How to Block Google QUIC Protocol on SonicOSX 7.0?
- How to block certain Keywords on SonicOSX 7.0?
- How internal Interfaces can obtain Global IPv6 Addresses using DHCPv6 Prefix Delegation
Categories
- Firewalls > TZ Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall NSA Series
YES
NO