Configuring sip timeout values, Verifying and monitoring sip inspection – Cisco ASA 5505 User Manual

Page 934

Advertising
background image

44-24

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 44 Configuring Inspection for Voice and Video Protocols

SIP Inspection

j.

To identify the non-SIP URIs present in the Alert-Info and Call-Info header fields, enter the
following command:

hostname(config-pmap-p)# uri-non-sip action {mask | log} [log]

The following example shows how to disable instant messaging over SIP:

hostname(config)# policy-map type inspect sip mymap

hostname(config-pmap)# parameters

hostname(config-pmap-p)# no im

hostname(config)# policy-map global_policy

hostname(config-pmap)# class inspection_default

hostname(config-pmap-c)# inspect sip mymap

hostname(config)# service-policy global_policy global

Configuring SIP Timeout Values

The media connections are torn down within two minutes after the connection becomes idle. This is,
however, a configurable timeout and can be set for a shorter or longer period of time. To configure the
timeout for the SIP control connection, enter the following command:

hostname(config)# timeout sip hh:mm:ss

This command configures the idle timeout after which a SIP control connection is closed.

To configure the timeout for the SIP media connection, enter the following command:

hostname(config)# timeout sip_media hh:mm:ss

This command configures the idle timeout after which a SIP media connection is closed.

Verifying and Monitoring SIP Inspection

The show sip command assists in troubleshooting SIP inspection engine issues and is described with the
inspect protocol sip udp 5060 command. The show timeout sip command displays the timeout value
of the designated protocol.

The show sip command displays information for SIP sessions established across the ASA. Along with
the debug sip and show local-host commands, this command is used for troubleshooting SIP inspection
engine issues.

Note

We recommend that you configure the pager command before entering the show sip command. If there
are a lot of SIP session records and the pager command is not configured, it takes a while for the show
sip command output to reach its end.

The following is sample output from the show sip command:

hostname# show sip

Total: 2

call-id [email protected]

state Call init, idle 0:00:01

call-id [email protected]

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals