Recent Posts

1

MiVoice Office 250/Mitel 5000 / Re: 6940w phones with phone manager

« Last post by lundah on Today at 11:09:43 AM »

You may need updated firmware for the 6940w's, you'd have to check the MCS documentation on how to apply the firmware update.

2

Mitel MiVoice Business/MCD/3300 / Re: What would your best practice for setting up firewall rule for the MBG

« Last post by lundah on Today at 11:08:47 AM »

The engineering guidelines for the MBG on edocs.mitel.com list all of the required ports, as well as recommendations for deploying in a DMZ environment.

3

Mitel MiVoice Business/MCD/3300 / Re: What are the best option to do a firmware update on Teleworker phones

« Last post by lundah on Today at 11:07:39 AM »

As far as I know TFTP is the only transfer protocol supported. In order for malicious firmware to be injected, the TFTP server would have to allow PUT (upload) access, which I don't believe the MBG allows, it allows GET (download) transactions only. In addition, you could block UDP 69 at the firewall which would force using the backup port of UDP 20001.

4

Mitel MiVoice Business/MCD/3300 / Re: What would your best practice for setting up firewall rule for the MBG

« Last post by HungryHippo on Today at 10:22:56 AM »

Yes I did, are they considered the best practice then?

5

Mitel MiVoice Business/MCD/3300 / Re: What are the best option to do a firmware update on Teleworker phones

« Last post by HungryHippo on Today at 10:21:20 AM »

doesn't hackers usually use the tftp protocol to gain access to servers for this case which is the MBG server and why tftp is usually not considered safe to allow through the firewall.

6

MiVoice Office 250/Mitel 5000 / Re: 6940w phones with phone manager

« Last post by thenewguy on Today at 10:20:38 AM »

I just reread my post, it's a little misleading.   I have a bunch of 6940s working on this system.  However when I try to use the 6940w it will not come up.  I can take a non W phone and it will work on the extension.    I know I had run into a software issue with bringing up W phones on a 3300 system on older software.  I figure this is the same thing. 

7

Mitel MiVoice Business/MCD/3300 / Re: What would your best practice for setting up firewall rule for the MBG

« Last post by acejavelin on Today at 09:46:06 AM »

I don't... honestly I find the best way to use the MBG is the way it was intended, with two interfaces, one on the LAN and one directly on the WAN. I don't have any customers doing it any other way.

That said, pretty sure the process is well documented that tells you what ports, etc need to be open/mapped... have you checked the docs and knowledge base?

8

Mitel MiVoice Business/MCD/3300 / Re: What are the best option to do a firmware update on Teleworker phones

« Last post by acejavelin on Today at 09:42:55 AM »

What is your concern with the firmware using an unsecure protocol? The phone downloads the firmware and verifies the checksum before applying it, there isn't any real security concern here...

9

Mitel MiVoice Business/MCD/3300 / What would your best practice for setting up firewall rule for the MBG

« Last post by HungryHippo on Today at 09:23:45 AM »

What would your best practice for setting up firewall rule for the MBG???

10

Mitel MiVoice Business/MCD/3300 / Re: What are the best option to do a firmware update on Teleworker phones

« Last post by HungryHippo on Today at 09:19:36 AM »

wouldn't that protocol be unsecured? Is there a way for something like sftp or https setup on MBG to have the phones updated?