A couple of years back I discovered that when a VoIP server would sporadically lose it’s registration to the upstream VoIP provider, and then in spite of re-sending those registration requests would seem completely unable to register. Sometimes when rebooting the device it would then manage to reregister but not always. (more…)
Archive for the ‘VoIP’ Category
So two separate clients of mine got nailed separately during the week. In both cases the root cause was a combination of weak passwords on SIP accounts, and public Internet connectivity.
For VoIP service providers obviously public Internet connectivity is not negotiable. Often clients are able to set their own passwords. Usually you get bent over the table pretty quickly – fortunately in the latter case one can just have a disclaimer which purely serves as an income protector – it does NOT save your business relationship with your client. In the case of PABX systems usually they are behind a firewall that only allows connectivity from the local network, but we had one case now where the router “accidentally” (misconfiguration due to misunderstanding of how the router’s DMZ and port-forwarding functionality works – not configured by ULS) forwarded SIP traffic to the VoIP server (router was set up to forward all traffic instead of just TCP/22 for ssh).
So in the case of a publicly accessible VoIP service – what can be done to protect both your client and yourself?
So I’ve got a client that has a need to have his clients dial into his network using ISDN. Right, so stagger a bunch of ISDN modems, use mgetty on them … yea yea. Figured I’d go the interesting route, get a few quad-port Digium ISDN PRI cards into a box (5 cards, => 5 * 4 * 40 = 20 * 30 = 600 odd available channels) and do this using asterisk.