Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Toll Fraud on Network BCMs

Status
Not open for further replies.

ryezak

Technical User
Jul 1, 2008
256
Just curious what the standard is for putting a On a PUblic IP direct? I have 2 installed and have had issues with hackers poising as a SIP provider and some how managing to gain access to the H323 trunks and make calls out the analog lines at the other of the networked Bcm.
Should I move these behind 2 firewalls and put in a vpn tunnel so the 2 private IPs can reach each other? Is this standard? Does Avaya have a known issue with putting a public IP on the BCM?
If the BCMs are behind the Firewalls Sonicwall or cisco.. will the audio quality be terrible due to the encryption and network propagation?

Thanks,
 
Not sure how you are setup; you should never let the BCM reach the WAN or vice versa; always set up VPNs through routers and let the gateways do the work.
 
I agree with yankblan you never put on public ip. What you have is called fishing and it find the BC and alerts the hacker.
Also is could be the VM. That is the easest way to hake a system, make sure OUTDIAL is disabled.If you serch systems hacked you'll find alot of stuff.
 
On a public IP, not only can your system be hacked but also the conversation can be sniffed and recorded. A VPN, since traffic is encrypted, will prevent that.
 
And yes call quality will be intermittent. But not so much becasue of the encryption. It is the internet so there is no QOS.

If call quality is important (like between our offices) we use MPLS.

Where it is not (like at my house) we use VPN.

I would be very careful about putting any system on a public IP address. It wont take long to get hacked.

And defintely check your voicemail. That is the most common place people are attached on a BCM or Norstar. Turn off Out-dial if at all possible. Run a voicemail box report and look for weird numbers in the outbound transfer.

"There is a good book on VoIP security called "Hacking VoIP.
 
Had this happen on BCM with IP sets- Put a set filter blocking international calls on vmail dn ports
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top