SIP
Embed This Widget
Add the script tag and a data attribute to embed this widget.
Embed via iframe for maximum compatibility.
<iframe src="https://ipfyi.com/iframe/glossary/sip/" width="420" height="400" frameborder="0" style="border:0;border-radius:10px;max-width:100%" loading="lazy"></iframe>Paste this URL in WordPress, Medium, or any oEmbed-compatible platform.
https://ipfyi.com/glossary/sip/Add a dynamic SVG badge to your README or docs.
[](https://ipfyi.com/glossary/sip/)Use the native HTML custom element.
Definition
Session Initiation Protocol. Ein Signalisierungsprotokoll zum Initiieren, Aufrechterhalten und Beenden von Echtzeit-Kommunikationssitzungen, einschließlich Sprachanrufen, Videokonferenzen und Instant Messaging über IP-Netzwerke.
SIP as a Signaling Protocol
Session Initiation Protocol (RFC 3261) is the dominant signaling protocol for Voice over IP and real-time communications. SIP is responsible for establishing, modifying, and terminating sessions — phone calls, video calls, instant messages. It does not carry audio or video itself; that role belongs to RTP (Real-time Transport Protocol). SIP is text-based and structurally similar to HTTPHypertext Transfer Protocol. The application-layer protocol for transmitting web pages, APIs, and other resources. HTTP defines methods (GET, POST, PUT, DELETE) and status codes for client-server communication., with methods like INVITE, ACK, BYE, REGISTER, and CANCEL.
SIP Message Flow
A basic call setup involves: caller sends INVITE → callee returns 180 Ringing → callee picks up, sends 200 OK → caller sends ACK. The 200 OK includes an SDP body that negotiates codec, IP address, and UDPUser Datagram Protocol. A connectionless transport protocol that sends datagrams without establishing a connection or guaranteeing delivery. Faster than TCP, it is preferred for real-time applications like DNS queries, VoIP, gaming, and streaming. port for the RTP media stream. SIP typically uses UDP port 5060 (or TCP 5060 / TLS 5061 for secure signaling).
Security Risks and Hardening
SIP is a major attack surface. SIP scanning bots constantly probe the internet for open SIP servers (port 5060) to register fraudulent extensions and make international calls at the victim's expense — toll fraud. Plain SIP leaks caller identity, call metadata, and RTP stream IP/port. Mitigations include SIP over SSL/TLSSecure Sockets Layer / Transport Layer Security. Cryptographic protocols that provide encrypted, authenticated communication over a network. SSL is deprecated; modern implementations use TLS 1.2 or TLS 1.3. (SIPS, port 5061), SRTP for media encryption, and FirewallA network security device or software that monitors and filters incoming and outgoing traffic based on predefined rules. Firewalls can block traffic by IP address, port number, protocol, or application-layer content. rules restricting SIP access to known carrier IPs. NAT traversal is a persistent SIP challenge — private IPv4 addresses in SDP bodies are unreachable from the internet, requiring STUN, TURN, or SIP-aware NAT helpers. SSL Certificate Checker can verify the certificate on a SIPS endpoint.