https://live.paloaltonetworks.com/t5/general-topics/sip-alg/m-p/291001#M77231 <P>I just want to make sure I'm thinking through the use of SIP inspection. If I have the sip application configured on a security rule, then the ALG will be in affect.</P><P>If I have defined port-based services in a security rule with no sip application defined, then the ALG will not be in affect.</P><P>SIP inspection will only happen if the application is defined in a policy.</P><P>&nbsp;</P> Wed, 02 Oct 2019 23:14:36 GMT rmfalconer 2019-10-02T23:14:36Z https://live.paloaltonetworks.com/t5/general-topics/sip-alg/m-p/291001#M77231 <P>I just want to make sure I'm thinking through the use of SIP inspection. If I have the sip application configured on a security rule, then the ALG will be in affect.</P><P>If I have defined port-based services in a security rule with no sip application defined, then the ALG will not be in affect.</P><P>SIP inspection will only happen if the application is defined in a policy.</P><P>&nbsp;</P> Wed, 02 Oct 2019 23:14:36 GMT https://live.paloaltonetworks.com/t5/general-topics/sip-alg/m-p/291001#M77231 rmfalconer 2019-10-02T23:14:36Z https://live.paloaltonetworks.com/t5/general-topics/sip-alg/m-p/291129#M77247 <P>That's incorrect</P> <P>&nbsp;</P> <P>App-id will pick up on the application and apply the application as it is configured in your objects&gt;applications</P> <P>&nbsp;</P> <P>If you want to disable SIP ALG, you either need to disable it in the application, or make an app override to a custom application for the specific sessions</P> Thu, 03 Oct 2019 16:49:11 GMT https://live.paloaltonetworks.com/t5/general-topics/sip-alg/m-p/291129#M77247 reaper 2019-10-03T16:49:11Z