login | register
Wed 01 of Aug, 2007 [09:14 UTC]

voip-info.org

Today's Deals

Free Tool: What does VOIP actually cost?

Free 90 Page IP Telephony Pocket Guide

Free VON Magazine Subscription

Search with Google

Search this site with Google. Results may not include recent changes.

Last Changes

Shoutbox

Aykut, Wed 01 of Aug, 2007 [07:53 UTC]: Hi all, does anybody know about Thomson ST2030 SIP phone. I have upgraded it to latest version (1.56) but "Hold" and "Conf" features are not working after the upgrade ?? Do you know any solution or do you have Ver. 1.52 ?? Where can I find it?
Edward J Brown, Tue 31 of Jul, 2007 [23:33 UTC]: Has anybody experienced Choppy voice quality when using a Linksys SPA942 in an Asterisk Conference bridge? It works fine with my polycom and Cisco, but sucks with my Linksys.
www.astawerks.com, Fri 27 of Jul, 2007 [18:00 UTC]: does anyone use asterisk on top of clark connect? does it work good?
simon, Fri 27 of Jul, 2007 [14:16 UTC]: Hi All, Has anyone here managed to get the Cisco79x1 to successfully fail over to the backup proxy. I have 2 asterisk servers , handsets all register and function, except that backup proxy function doesn't work. Any working example would be very apprecia
Matthew Richmond, Thu 26 of Jul, 2007 [03:40 UTC]: using the page() application to page across our building...often the meetme conferences don't disconnect after the caller hangs up. Anyone else having this problem. (using Polycom phones)
Matthew Richmond, Wed 25 of Jul, 2007 [02:58 UTC]: thanks Nicholas Blasgen! I haven't worked with AGI before, but there's always a first! Thanks again!
Nicholas Blasgen, Tue 24 of Jul, 2007 [19:18 UTC]: Matthew Richmond, AGI will handle all that for you.
sam, Mon 23 of Jul, 2007 [16:39 UTC]: need help - certain voicemail extension will stop working and recording voicemail on asterisk - anyone know why and how to fix it? Thanks
john haji, Mon 23 of Jul, 2007 [14:55 UTC]: free calls to pakistan
bong, Sat 21 of Jul, 2007 [19:09 UTC]: hi good day to all can anyone help me how to configured the nortel sip to the signaling server and how to activate in mobile w/ sip compatible without mcs

Server Stats

Execution time: 0.46s
Memory usage: 2.19MB
Database queries: 33
GZIP: Disabled
Server load: 3.54

Asterisk security

Security in a complex piece of software like Asterisk is not a simple thing. Help us collect information on the subject:

Information on Asterisk and Security, including a presentation from AstriCon 2006
Asterisk Security White Paper: A white paper written by Zone24x7 Inc about how to configure Asterisk to be secure
Astricon Europe Powerpoint presentation about asterisk security and stability
SIP security: What security functions are implemented for SIP in asterisk
coding security: Any thoughts on secure coding, buffer overflows etc?
Firewalls and Asterisk: What ports are involved and how do I set up a firewall to protect Asterisk?
Linux security and Asterisk: Any special considerations when installing your Linux platform?
IAX security
MGCP security
ISDN - pri and bri - security
Ranch Networks Configuration for MIDCOM with IP-PBX Asterisk
Dialplan security - What to consider when setting up a dialplan in extensions.conf
NetSec version of Asterisk v1.2.2: This release of Asterisk contains support for network security devices manufactured by Ranch Networks, Inc., using their MIDCOM interface library. You will need the companion libmidcom-0.1.0.tar.gz file to build the library. Contact Ranch Networks' support department for assistance in building and configuring MIDCOM support.

What is Midcom you ask?

So Midcom is a IETF protocol Voip PBX speak to tell firewalls type boxes (like Ranch) what ports to open to allow calls through the firewall. The problem being as Voip get secure encrypted signaling firewalls will not be able to tell which ports to open to let media through the firewall. I am scared of the idea that my SIP proxy or IP PBX would be allowed to tell my firewall which ports to open. But I am not sure there is a better solution.

Articles

Good paper that also includes short section on Midcom: NIST: Security Considerations for Voice Over IP Systems
BSI on VoIP security (German): Abstract - 130 page report, 11 MB

See also

Asterisk administration
Asterisk encryption
http://www.securiteam.com/securitynews/5LP0720B5G.html Security Notice: Asterisk / Sept 7, 2003 (Fixed).
http://www.securiteam.com/unixfocus/5HP0H1PB5S.html Security Notice: Asterisk / Sept 16, 2003.

Asterisk: Start page | Introduction | FAQ | Tips & Tricks

Created by oej, Last modification by ken on Tue 07 of Nov, 2006 [00:33 UTC]

Please update this page with new information, just login and click on the "Edit" or "Add Comment" button above. Get a free login here: Register Thanks! - support@voip-info.org

Page Changes | Comments

Sponsored by:

Terms of Service Privacy Policy
© 2003-2007 Arte Marketing, Inc.

Powered by bitweaver