Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
maulishshah
Staff
Staff

Created on ‎01-28-2024 09:44 PM Edited on ‎05-31-2024 05:29 AM By Moderator

Article Id 296365

Technical Tip: VOIP Profile missing on GUI or UTM Profile

Description

 

This article describes how to view VoIP profiles in UTM features of the GUI.

 

Scope

 

FortiOS 7.0+.

 

Solution

 

By default, the firewall policies are set to operate in Flow-based inspection mode and the VOIP profiles (through SIP-ALG) are a proxy-based feature.

 

Due to this reason, the firewall will not display the default VoIP profiles (proxy-based) in a flow-based policy.

The option exists and allows the selection of profiles because additional VOIP profiles can be created for flow-mode inspection (for specific usage). 

 

Here is the reference image: 

 

VOIP_missing.PNG

 

Note: 

If it is not possible to see the 'VoIP' profile option at all in the Firewall Policy, then check and enable 'VoIP' from the System Feature Visibility first.

If the Firewall Policy is moved from Flow-based to Proxy-mode inspection, it is possible to see the default, pre-existing VoIP profiles.

 

Refer to the following image: 

 

Profile_Visiblew.PNG

 

VoIP profile can be set through CLI using the below command:


config firewall policy
    edit <Policy_ID>
        set set inspection-mode proxy
        set voip-profile <Profile_name>
end

Labels:
648
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.