Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Toll Fraud on Network BCMs

Status
Not open for further replies.
ryezak

ryezak

Technical User
Jul 1, 2008
256
Just curious what the standard is for putting a On a PUblic IP direct? I have 2 installed and have had issues with hackers poising as a SIP provider and some how managing to gain access to the H323 trunks and make calls out the analog lines at the other of the networked Bcm.
Should I move these behind 2 firewalls and put in a vpn tunnel so the 2 private IPs can reach each other? Is this standard? Does Avaya have a known issue with putting a public IP on the BCM?
If the BCMs are behind the Firewalls Sonicwall or cisco.. will the audio quality be terrible due to the encryption and network propagation?

Thanks,
 
Sort by date Sort by votes
Not sure how you are setup; you should never let the BCM reach the WAN or vice versa; always set up VPNs through routers and let the gateways do the work.
 
Upvote 0 Downvote
I agree with yankblan you never put on public ip. What you have is called fishing and it find the BC and alerts the hacker.
Also is could be the VM. That is the easest way to hake a system, make sure OUTDIAL is disabled.If you serch systems hacked you'll find alot of stuff.
 
Upvote 0 Downvote
On a public IP, not only can your system be hacked but also the conversation can be sniffed and recorded. A VPN, since traffic is encrypted, will prevent that.
 
Upvote 0 Downvote
And yes call quality will be intermittent. But not so much becasue of the encryption. It is the internet so there is no QOS.

If call quality is important (like between our offices) we use MPLS.

Where it is not (like at my house) we use VPN.

I would be very careful about putting any system on a public IP address. It wont take long to get hacked.

And defintely check your voicemail. That is the most common place people are attached on a BCM or Norstar. Turn off Out-dial if at all possible. Run a voicemail box report and look for weird numbers in the outbound transfer.

"There is a good book on VoIP security called "Hacking VoIP.
 
Upvote 0 Downvote
Had this happen on BCM with IP sets- Put a set filter blocking international calls on vmail dn ports
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

dukane123
  • Locked
  • Question
BCM50 remote packages & fraud protection
Replies
3
Views
137
dukane123
dukane123
akak247
  • Locked
  • Question
RCC install on win 11- reporting for contact centre
Replies
2
Views
370
curlycord
curlycord
2dfx
  • Locked
  • Question
SIP Trunks on Digital Sets? 4
Replies
18
Views
324
curlycord
curlycord
gberger
  • Locked
  • Question
Unable to use BcmMonitor remotely on Bcm50R6
Replies
2
Views
113
gberger
gberger
Firebird Scrambler
  • Locked
  • Question
BCM 50 / 450 CDR live client query on port used? 1
Replies
3
Views
145
Firebird Scrambler
Firebird Scrambler

Part and Inventory Search

Sponsor

Back
Top