Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
rbarnes
Staff
Staff

Created on ‎04-07-2024 04:10 PM Edited on ‎04-07-2024 10:24 PM By Community Manager

Article Id 308641

Troubleshooting Tip: VoIP audio issues due to packet loss

Description

This article describes how to resolve VoIP audio issues caused by packet loss while using FortiGate.
Scope FortiGate v7.4, v7.2, v6.4.
Solution

If packet loss is causing VoIP audio issues and/or registration issues while using DoS policies, use the following command to see if VoIP trunk or PBX appears in the command output or in the anomaly logs:

 

diag ips anomaly list

 

The reason this occurs is because UDP VoIP uses a lot of UDP packets. This can create a false positive due to the number exceeding the default DoS policy threshold and dropping important VoIP packets.  

 

For example:

 

voipkb.png

 

To fix the issue, increase the UDP thresholds in the DoS policies.

 

For example:

 

voipsolution12.png

 

Related documents:

Technical Tip: Disabling VoIP Inspection.

DoS protection - FortiGate cookbook.
197
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.