Author Topic: Security Practices  (Read 1013 times)

Offline RLyon

  • Full Member
  • ***
  • Posts: 145
  • Country: us
  • Karma: +0/-0
    • View Profile
Security Practices
« on: April 19, 2019, 10:12:11 AM »
What are good security practices that one should implement to prevent the system from getting hacked? I am getting  Invalid Extension Dialed -SIP PEER: 'P9001, SIP device: 1000, number: 94981235854


Offline Tech Electronics

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 2983
  • Country: us
  • Karma: +89/-1
    • View Profile
Re: Security Practices
« Reply #1 on: April 22, 2019, 07:24:04 AM »
RLyon,

That is a loaded question that covers a lot of topics, but for this use case you could set the SIP Peer Phone Group P9001 to use a Static Binding instead of a username and password; remember you have to reset the phone system to get a static binding to take effect. This would also require that the SIP x1000 be set to a static IP Address as well.

Thanks,

TE

Offline RLyon

  • Full Member
  • ***
  • Posts: 145
  • Country: us
  • Karma: +0/-0
    • View Profile
Re: Security Practices
« Reply #2 on: April 23, 2019, 05:59:56 PM »
Thank you for that tip. I did change that. I also watched Mitels Toll Fraud video. I changed the VM password. Was looking for the trunk to trunk dialing but can not find it. They are still getting in and making multiple 911 calls. I took the phones out of service in the mean time till I find a solution.

Offline Dogbreath

  • Global Moderator
  • Sr. Member
  • *****
  • Posts: 396
  • Country: gb
  • Karma: +18/-0
    • View Profile
Re: Security Practices
« Reply #3 on: April 25, 2019, 05:01:54 AM »
Are you letting SIP in from the internet?

Offline acejavelin

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 4100
  • Country: us
  • Karma: +133/-0
  • High-tech, heavy metal redneck!
    • View Profile
    • Like what I do and wanna help out? Send me a donation!
Re: Security Practices
« Reply #4 on: April 25, 2019, 10:41:39 AM »
Assuming you need port 5060 open from the public Internet for trunking (otherwise, close it!), use a complex password... We use a 16 character random password like "FjSQmW7hLj8dz!dv" (randomly generated by Roboform) and that usually is sufficient since there is no MAC address restrictions in the 250.


 

Sitemap 1 2 3 4 5 6 7 8 9 10