This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
nsoares
Explorer
‎2019-05-27 02:39 AM

VOIP by VPN

Hi Everyone,


I have a VPN conection to my ClusterXL Checkpoints (4200 appliances). Everything works fine, except VOIP calls.

I can sucessfully make a conection to my voip server, make voice calls from the internal network to the external network, but when I make calls from the external network to the internal network, get this error:

"

Firewall - Protocol violation detected with protocol:(RTP), matched protocol sig_id:(1), violation sig_id:(9). (500)


"

What can I do? Without compromise my security?

 

 

0 Kudos
5 Replies
PhoneBoy
Admin
Admin
‎2019-05-27 09:15 PM

Where are the SIP clients and server in relation to the VPN endpoints? A network diagram would help as well as what version of code is involved and the rule(s) matching the traffic.

Note that VoIP protections are considered basic firewall protections, not IPS.

0 Kudos
nsoares
Explorer
‎2019-05-28 02:05 AM
In response to PhoneBoy

Hi

Thank you for your reply. I solved the problem after posting my question.

Thank you for your help.

 

0 Kudos
Chris_Allen
Explorer
‎2019-06-03 04:13 AM
In response to nsoares

I have this same issue. How did you solve it @nsoares?
0 Kudos
nsoares
Explorer
‎2019-06-03 05:57 PM
In response to Chris_Allen

Hi Cris_Allen,

In my case, the problem was asymmetrical routing and the topology wasn't configured correctly.

Assuming that your problem is the same as mine, the solution is:

1- It's essencial to ensure that all traffic is received and sended in the same VLAN/network (check routes);
2- Create a network group and add all the networks that will pass by that VLAN/network to communicate with the server;
3- In the checkpoint cluster gateway definitions, go to network management, open the interface that you want to configure and in topology setting select modify, Internal (leads to local network), specific and put the group previously created.

4- Check the firewall rules, allowing networks to communicate with the server and vice-versa.

After that,  everything should work just fine!

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2019-06-03 05:58 AM

Maybe you can find help here: sk95369: ATRG: VoIP

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events