The name of the Rule Set.

The description of the Rule Set.

Session Manager or Branch Session Manager.

Save and apply the changes.

Cancel the changes.

Enable or disable the rule.

The name of the SIP Firewall rule. The name can have a maximum of 80 characters.

The action type for the rule:

• None: No specific action required. Use this action when you want to only generate a log or alarm for matching SIP traffic. Rule traversal continues when a SIP packet matches a rule with the None action.

• Permit: If the rule conditions are met, allow the SIP message to pass through the SIP Firewall. If the rule conditions are not met, the SIP message is not affected or dropped.

• Drop: If the rule conditions are met, drop the SIP message.

• Rate Block: If the packets matching the rule exceed a certain count in a certain period, block the matching SIP packets for the duration of timeout. You define the timeout period using the Threshold parameters.

• Rate Limit: If the packets matching the rule exceed a certain count in a certain period, drop the additional matching SIP packets for the duration of the period. You define the time period using the Threshold parameters.

Specify if you want to generate a log, send an alarm, or take no action.

The message that will be logged when the Log Type is Yes or Alarm.

Enable or disable all rules in the Firewall Rule Set.

Define a new SIP Firewall rule.

Edit the selected SIP Firewall rule.

Delete the selected rule or rules.

Move a selected rule up in the list.

Move a selected rule down in the list.

Enable or disable dropping of messages from untrusted hosts.

Key for filtering messages.

The value of the Key. The Value can be one of the following:

• Remote IP address: IP address of the host from where the messages are sent.

• CONTACT: The string value to search in the Contact SIP Header in the SIP message. The string value can be a complete or partial SIP URI, for example, jdoe@avaya.com for a specific user, or @avaya.com for a domain of users.

• FROM: The string value to search in the From SIP Header in the SIP message. The string value can be a complete or partial SIP URI, for example, jdoe@avaya.com for a specific user, or @avaya.com for a domain of users.

When you select Remote IP Address in the Key field, and select Enable IPv6, the Value field supports both IPv4 and IPv6 addresses. When you specify an IPv6 address in the Value field, you must also specify an IPv6 prefix mask.

Subnet mask used for the blacklist operation.

This field supports values between 1 and 128 and is mandatory.

Create a rule for dropping messages from untrusted hosts.

Delete the selected Blacklist rule.

Enable (allow) or disable do not allow) messages from trusted hosts to bypass the SIP Firewall.

Key for filtering messages.

Value of the Key. The Value can be one of the following:

• Remote IP address: IP address of the host from where the messages are sent.

• CONTACT: The string value to search in the Contact SIP Header in the SIP message. The string value can be a complete or partial SIP URI, for example, jdoe@avaya.com for a specific user, or @avaya.com for a domain of users.

• FROM: The string value to search in the From SIP Header in the SIP message. The string value can be a complete or partial SIP URI, for example, jdoe@avaya.com for a specific user, or @avaya.com for a domain of users.

Subnet mask used for the whitelist operation.

Create a rule for allowing messages from trusted hosts to bypass the SIP Firewall.

Delete the selected Whitelist rule.