LAN-WAN ALG (mandatory) Qos (optional) … > ALG Default works Disable SIP ALG and SPI Firewall ......
Transcript of LAN-WAN ALG (mandatory) Qos (optional) … > ALG Default works Disable SIP ALG and SPI Firewall ......
DEVICE
Actiontec GT704WG
Adtran NetVanta
Apple Airport Extreme
Apple Airport Express
Arris TG1672, DG860, DG1670, NVG595
ASUS RT-N56U
Asus RT-N12
ASUS RT-N66U
Asus RT-AC66U, Firmware 3.0.0.4.376_3861
Belkin
CBT Fioptics Branded Westel (Netgear) Ultraline Series 3,Firmware 2.01.05.06
Cisco 837
Cisco RV120WFirmware 1.4 .xx or later
Cisco RV180
LAN-WANTHROUGHPUT
685M
92M, 3 phones
826M
93M
728M
839M
86M
811M
ALG (mandatory)
Incompatible
Log in to the router’s web interface at your router’s local IP address. Expand the Data section on the left of the admin portal. Choose Firewall / ACLs from the Firewall section. Click ALG Settings tab. Disable the SIP ALG option by unchecking the box. Click Apply. You should see a message that reads Firewall settings updated succesfully.
Default works
Incompatible
If there is a SIP ALG running, telnet into the device and enter the follow-ing commands:nvram get nf_sip (it should return a “1”)nvram set nf_sp=0nvram committhen reboot the router for the changes to take effect.Incompatible
Incompatible
Must be disabled.
1. Log into the router’s web interface.2. Go to Advanced Settings / WAN on left side.3. From the tabs across the top, choose NAT Pass through.4. Change SIP pass through to “Disable.” Hit apply.
Incompatible
Default works
GUI login admin/passwordSIP ALG is in the Advanced Menu, & is disabled
Must be disabled. Command line:Enableno ip nat service sip udp port 5060no ip nat service sip tcp port 5060write mem
Disable SIP ALG
Default works.
Qos (optional)
None
In QOS tab, enable Qos, and set upload and download bandwidth, then choose user defined Qos rules, these can be set by source IP, MAC, or destination port. ‘Click on Source IP or Mac’, choose ‘Polycom_xxxxxx’. Set this priority to ‘Highest’, and reset Web Surf, and HTTPS to ‘ High’. Click Apply
QOS is also in the advanced menu, Comes disabled but can have the upstream and downstream bandwidth set, and ‘Triple Play User’ enabled to prioritzie voice.
Yes
CUSTOMER PROVIDED ROUTER COMPATIBILITY MATRIXVersion 1.0
DEVICE
Cisco RV042, RV042G, RV082, RV016, RV042, RV042g (4, 8, 16 port switches) Must be firmware 4.2.1.02 or later
D-Link DIR655 Rev A
D-Link DIR-825
D-Link WBR-1310
D-Link WBR2310
D-Link DIR-615, hardware revision B, firmware 2.2.4 and higher
D-Link DIR-625 firmware1.21
D-Link EBR-2310, hardware revision B, firmware 2.2.4 and higher
D-Link EBR 2310 Rev CFortigate
Juniper / Netscreen SSG Series
Linksys WRVS4400N
Linksys 900
Linksys E1200
Linksys E2500
Linksys E3200 v1
Linksys E3500
Linksys WRT160N
Linksys WRT54G2firmware 2.00.20 or better
LAN-WANTHROUGHPUT
89M
272M
247M
88M
3 phones
17M
94M
90M 5 phones
90M 5 phones
582M5 phones
2 phones
51M 2 phones
ALG (mandatory)
Default works, may need to change UDP timeout from 30 to 300 seconds on :
https://(router LAN IP)/f_general_hid-den.htm
Disable SIP ALG
Incompatible
Incompatible
Default works.SIP ALG must be disabled.In firewall settings under the ‘Application Level Gatewat (ALG) Configuration’. The SIP option should be unchecked.SIP ALG must be disabled.Advanced > Firewall Settings:Uncheck “Enable SPI”Uncheck “SIP” box in the Application Level Gateway section Click save.SIP ALG must be disabled.Advanced > Firewall Settings:Uncheck “Enable SPI”Uncheck “SIP” box in the Application Level Gateway section Click save.IncompatibleSIP ALG must be disabled.In the CLI of the Fortigate type the following:config system settingsset sip-helper disableset sip-nat-trace disableReboot the device.
In the CLI type the following:Config system session-helper show(now look for SIP, mostly it will be “12”)delete 12Don’t use any protection profiles on the firewall of the SIP rules.
Disable SIP ALG:Security > ALG
Default works
Disable SIP ALG and SPI Firewall
Default works
Default works
Disable ALG:Connectivity > Administration > Application Layer Gateway > SIP (unchecked)Turn off IPv4 and IPv6 SPI Firewall protec-tion: Security > Firewall
Default works
Default works
Default works up to 2 phones
Qos (optional)
Yes
Yes
No
DEVICE
Linksys WRT1200ACLinksys WRT1800AC
Linksys WRT610N
Linksys E or EA series, model 4000 & greaterFirmware 1.1.40.166281
Mikrotik
Netgear FVS318
Netgear WGT624
Netgear WRN2000
Netgear WGR614v9, DGN2000Firmware V1.0.18_8.9NA
Netgear DG834N
Netopia Caymen 3000
PACE 5031NV-030
Siemens Speedstream
Thompson SpeedTouchST530 v6 Firmware 5.4.0.13 or later
Thompson TG-585
Thompson ST780
Zyxel P-660HW, P-729H, PK5001Z
Zytel USG50
ZyWall USG 50.80/100
ZyWall 5
LAN-WANTHROUGHPUT
AC1200
157M
AC1750
3 phones
ALG (mandatory)
Disable SIP ALG
SIG ALG must be disabled:Administration > Management > Advanced Features > disable SIP ALG
Disable ALG:Connectivity > Administration > Application Layer Gateway > SIP (unchecked) Turn off IPv4 and IPv6 SPI firewall protection:Security > Firewall.Turn off filter requests: Security > Internet Filters
SIP ALG must be disabled.Mikrotik SIP ALG is called a SIP Helper and is located under /IP>Firewall>Service ports.To disable, run this command from the terminal: /IP firewall service-port disable sipOr the winbox just navigate to IP> Firewall and then click on the Service Ports tab and disable it through the GUI.
Incompatible
Incompatible
Incompatible
SIP ALG must be disabled:WAN Setup Menu > NAT filtering, uncheck box next to “Disable SIP ALG”
Advanced > WAN Setup, check “Disable SIP ALG”, click Apply
Incompatible
Incompatible
Default works
Must disable ALG by telnet:> Connection inbind application=SIP port=5060 > save all
Incompatible
From the CLI :connection appconfig application=SIP SIP_ALG=disabled
Disable SIP ALG.Telnet into the router.modem. Choose (24) System Maintenance and (8) Command Interpreter Mode. From the command line type: ip nat sevice sip active 0 orip alg disable ALG_SIPyou will recieve the message :SIP ALG disable”Turn OFF Enable SIP ALG.Turn ON ENable SIP Transformations.Turn OFF Enable Configure SIP Inactivity Timeout. Enter Psss Rule for All SIP SBC IP Adresses Increase UDP Timeout from 25 to 300 under firewall tab, Session Control
Click the Gears icon on the left > Click on Network. > Click on ALG. > Uncheck the boxes for Enable SIP ALG Enable SIP Transformation to disable these options. Next, click on Firewall > Click on the Session Control tab at the top > Set the UDP Session Timeout Value to 30.
Click on Advanced > Click on ALG > Uncheck Enable SIP ALG to disable SIP ALG.
Qos (optional)
No