Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

BCM50 SIP Trunks all in use 1

Status
Not open for further replies.
canflyguy

canflyguy

Technical User
Jul 25, 2018
100
CA
It only happens occasionally but it generates an alarm saying all keycoded SIP Trunks in use. This appears to be due to flooding by hackers directly trying to access the BCM on the SIP trunks. I've seen this on other systems, but generally there is a setting that makes it so that only the account registered on the system can actually call into the phone system and are not able to call the phone system directly by the IP address. Is there such a provision or setting on the BCM or is there a work around to not being bombarded by hackers preventing your legitimate calls from getting through?
 
Sort by date Sort by votes
Make sure to disable any SIP or ALG settings and do NOT forward any ports for SIP such as 5060.

These are the only ports I have forwarded on my router and both SIP Trunks and IP Sets work fine:
UDP 7000-7002
UDP 28000-28255
UDP 51000-51200



________________________________________
small-logo-sig.png


=----(((((((((()----=
Toronto, Canada

Add me to LinkedIN
 
Upvote 0 Downvote
Hi there!

So I know that the 5060 port should definitely not be forwarded, but the other series of ports, 7000-7002 I thought was for IP set registration? And, as far as UDP 28000-28255 and UDP 51000-51200 I haven't looked them up to see if they deal with SIP trunking, but the SIP trunking works currently without any of these ports forwarded? The only thing I've found is that there seems to be some issue with calls being missed at times and not getting into the office. I'm going to check on the SIP and ALG settings just to be sure, but I'm pretty sure they have been turned off previously.
 
Upvote 0 Downvote
As a follow-up to this: I just received a complaint from an end user that they were getting phone calls on their off premise IP phone that indicate extension 068? When answered, there is no audio heard. I suspect it's a hacker call, but is there a way to prevent this type of intrusion? As mentioned on my initial post, I know on the newer systems, you can specify to only accept traffic from the SIP provider address, but is this possible on either the BCM or the IP phone? I'm not sure at this point if the calls are going through the BCM or just direct to the off-premise SIP phone?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

AShammah
  • Question
BCM50/FreePBX integration Sip or H.323
Replies
0
Views
77
AShammah
AShammah
LidLock Technologies
  • Question
BCM50 R2 Voicemail service stopping repeatedly
Replies
5
Views
279
curlycord
curlycord
2dfx
  • Locked
  • Question
SIP Trunks on Digital Sets? 4
Replies
18
Views
296
curlycord
curlycord
gberger
  • Locked
  • Question
Bcm50 R6 stuck in boot after AC power loss
Replies
5
Views
271
curlycord
curlycord
jwulf1092
  • Locked
  • Question
BCM50 access through BEM
Replies
2
Views
238
jwulf1092
jwulf1092

Part and Inventory Search

Sponsor

Back
Top