The SBC SWe Lite is deployed with an initial configuration that automatically accepts and processes the following types of incoming traffic flows at startup: media, STUN, RTCP, and SIP. Therefore, it is not necessary to create Access Control List rules for opening ports for the following inbound port/protocol use:
- Public Media packets over UDP (Ports 16384 - 21186)
- SIP traffic over TCP (Port 5061 )
- STUN/TURN packets over TCP (Ports 3478 and 3481)
To support security objectives, the initial SBC SWeLite configuration will drop all other incoming traffic outside the scope of defined ACL rules. Outgoing traffic is not affected by ACL.