经常有管理员反应,
防火墙日志里显示SIP错误信息。。。 在此我贴出JUNIPER的官方解释。 What does SIP PARSER ERROR MESSAGE: CANNOT FIND CRLF mean (KB ID: KB7240)
| Article ID: | KB7240 |
| Former Article ID: | nskb7326 |
| Published: | Dec 06, 2005 |
| Last Modified: | May 02, 2005 |
| Visible By: | Employee, PTAC, Partner, Customer, Public |
Back to Previous Page |
Knowledge Base Home
Article URL
http://kb.juniper.net/KB7240
Synopsis
Problem
The following is getting this message in the event logs:
"SIP PARSER ERROR MESSAGE: CANNOT FIND CRLF
What does SIP PARSER ERROR MESSAGE: CANNOT FIND CRLF mean?
system notif 00767 NSCos45683
Solution
This log event message is indicating that the Juniper NetScreen Firewall/VPN device is having problems parsing SIP packets because it cannot find the carriage return line feed commands - CRLF in the SIP request or SIP response. SDP (Session Description Protocol) requires that there should be an CRLF terminating in each line with either an SIP request or response for distinguishing between message boundaries.
There are some SIP implementations that leave out the trailing CRLF after the SDP body and compute the content-length accordingly, which does not comply with RFCs and which the Juniper Netscreen device does not currently support.
Workaround:To eliminate these log messages, define the policy by specifying the "IGNORE" option in the Application pulldown.
In customer environments where no sip packets pass, there could be other packets using port 5060; which will trigger sip alg. These packets, of course, do not match the sip rfc definition; thus the error.
The solution for this is to turn off sip alg.
Category DescriptionBy Product » Software » Operating Systems »
ScreenOS Software » 5.1.x » 5.1.0
By Product » Software » Operating Systems » ScreenOS Software » 5.0.x » 5.0.0
PurposeTroubleshooting
Related Articles
Related Links
Related Files
2001-2007 Comsenz Inc.
