Does Enable Highest Bandwidth Priority for SIP Traffic Require SIP ALG to Be Enabled?

DeanH
DeanH Posts: 48  Freshman Member
First Comment Fourth Anniversary
edited April 2021 in Security
I am trying to determine what indicators the BWM feature "Enable Highest Bandwidth Priority for SIP Traffic" uses to identify the SIP traffic.  I want to enable this feature to help prioritize SIP, but we do not have SIP ALG enabled due to our VoIP system not requiring it - and it adversely affecting it at times.  So, will enabling this feature on the BWM screen do anything if we are not utilizing SIP ALG and just use port based rules for our SIP traffic?

Also, does enabling this feature remove the need to create BWM rules?

Best Answers

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,311  Zyxel Employee
    100 Answers 500 Comments Friend Collector Fourth Anniversary
    edited February 2021 Answer ✓

    Hi @DeanH

     In your scenario, you can check “Enable Highest Bandwidth Priority for SIP Traffic” and won’t add any BWM rule for SIP traffic.


    Additionally, you must check “Enable SIP ALG”.
    Due to those two rules must interwork with each other internally.
    You just enable SIP ALG and won’t enable its other extended option. 

    P.S.Those values depend on your needs
    SIP Media Inactivity Timeout (1~86400)
    SIP Signaling Inactivity Timeout(1~86400)

  • DeanH
    DeanH Posts: 48  Freshman Member
    First Comment Fourth Anniversary
    Answer ✓
    Hello PeterUK,
    Thank you for the commands.
    Since we use UDP, this TCP command probably won't help much.  What specifically does it do to control the ACK?

    Hello Zyxel_Jeff,
    Thank you for your response.
    That is what I thought.

All Replies

  • PeterUK
    PeterUK Posts: 3,642  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    edited January 2021

    I would guess its service port based and not needing the SIP ALG if not make your own rule for the ports used by SIP with high Priority.

    Enabling BWM dose nothing unless you rate limit on WAN and LAN egress limits in interface under your ISP speed limits for the BWM to work.

    I would also say enable this in the web console:

    configure terminal

    bwm control-tcp-ack


  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,311  Zyxel Employee
    100 Answers 500 Comments Friend Collector Fourth Anniversary
    edited February 2021 Answer ✓

    Hi @DeanH

     In your scenario, you can check “Enable Highest Bandwidth Priority for SIP Traffic” and won’t add any BWM rule for SIP traffic.


    Additionally, you must check “Enable SIP ALG”.
    Due to those two rules must interwork with each other internally.
    You just enable SIP ALG and won’t enable its other extended option. 

    P.S.Those values depend on your needs
    SIP Media Inactivity Timeout (1~86400)
    SIP Signaling Inactivity Timeout(1~86400)

  • DeanH
    DeanH Posts: 48  Freshman Member
    First Comment Fourth Anniversary
    Answer ✓
    Hello PeterUK,
    Thank you for the commands.
    Since we use UDP, this TCP command probably won't help much.  What specifically does it do to control the ACK?

    Hello Zyxel_Jeff,
    Thank you for your response.
    That is what I thought.

  • PeterUK
    PeterUK Posts: 3,642  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    DeanH said:

    What specifically does it do to control the ACK?



    It stops the USG from bypassing the Egress rate limit you set for sent traffic when you download.  

Categories

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)