Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Nortel NAM

Status
Not open for further replies.
PatsyR

PatsyR

Programmer
May 14, 2012
13
We have a customer that has a Nortel NAM 4.1 with an automated attendant set up. It was built as CCR tree 1 before they were our client. When you call their main number and the AA answers and you press 9 it transfers to one of there other locations in a different state. When I go under CCR 1 programming to look at path 9 the display show invald path. How do I remove this. I have tried to build other trees but every time I push 9 in any tree it does an external transfer to one of there other locations in another state. Currently there AA option 1-1 goes to an external number and 1-2 also goes to an external number. Is there a way I can restrict the voice mail from being able to call out but make and exception for the 2 numbers they need to transfer to. Someone is hacking into their system and had made calls to Zimbabwe and other places. We did a SMDR traffic study and identified multiple calls going out their voice mail that should not be.
 
Sort by date Sort by votes
It sounds to me like there is a "man in the middle" that is capturing "9". 9 has only one function in all Nortel voice mails and that is to change language. Tree entries are 1-8 only.

Marv
 
Upvote 0 Downvote
How would I go about looking for "the man in the middle
 
Upvote 0 Downvote
-What version software is KSU? 6.X or up?
-How do internal users dial out? 8?
-If users dial 9 do they get the same destination in next state?

9 is probably a destination code and told to use a certain route, that route is told to call the other branch.

You best to install the toll fraud patch on the NAM so that they cannot use the dest code from the NAM's AA.

Here is the patch:
As for Toll Fraud itself it is most likely a user with a mailbox has a weak password and allowed External Transfer, deny it in Class Of Service or change their COS.

You can log to NAM and get some detailed reporting such LD's called out if you want to find that mailbox.

Check out the FAQ's for Toll Fraud :







=----(((((((((()----=
curlycord
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

kmpp
  • Locked
  • Question
Nortel Call Pilot
Replies
6
Views
372
curlycord
curlycord
S
  • Locked
  • Question
Nortel Meridian w/ Norstar Flash CCR issue 2
Replies
11
Views
1K
Synapt
S
P
  • Locked
  • Question
Incoming calls go to dial tone on Nortel MICS-XC 7.0
Replies
11
Views
533
curlycord
curlycord
roycep
  • Locked
  • Question
Nortel Norstar: Remove one extension from night ringing group 1
Replies
3
Views
294
roycep
roycep
MIKEY-MIKE7
  • Locked
  • Question
Nortel CICS 4x16 Call foward Outside
Replies
3
Views
208
curlycord
curlycord

Part and Inventory Search

Sponsor

Back
Top