From: Kim Teu - Amitabha (kim.teu@gmail.com)
Date: Fri Jan 30 2009 - 20:08:31 ARST
Hello experts,
I have configured sip inspection on ASA. When I have it configured under
class-map inspection_default, I am able to see the sip registration detail
by doing show sip.
However, I am trying to match the sip port 5061 in addition to standard
5060. See config below. I see traffic matching under show service-policy
and access-list. However, I don't see the sip registration detail anymore
by doing show sip. Is it normal? Is the sip traffic inspected?
class-map SIP_PORT
match access-list SIP_TRAFFIC
access-list SIP_TRAFFIC line 1 extended permit udp any eq sip any
(hitcnt=14) 0xd32fd4c9
access-list SIP_TRAFFIC line 2 extended permit udp any eq 5061 any
(hitcnt=10) 0xa086a564
Class-map: SIP_PORT
Inspect: sip , packet 12, drop 0, reset-drop 0
Thanks.
-- May All Behappy!!! Kim Loon Teu UE=uBW CCIE 19369 www.kimteu.com http://www.linkedin.com/in/kimteuAll conditioned phenomena Are like a dream, an illusion, a bubble, a shadow Like the dew, or like lightning You should discern them like this R;GPSPN*7(#,HgCN;CE]S0#,HgB6R`Hg5g#,S&WwHgJG9[
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:43:40 ARST