[ILUG] Asterisk security
Paul Ryszka
belgarath at webangel.ie
Mon Nov 8 13:23:14 GMT 2010
On Mon, 2010-11-08 at 12:58 +0000, Gavin McCullagh wrote:
--snip--
> >
> > - change your sip port from default 5060 to something different,
> > 5060 is constantly scanned
>
> Is this an option if you take incoming SIP calls?
--snip--
Not really but you can always limit it using iptables to the hosts you
are dealing with for incoming connections (usually some VOIP provider)
also you can only allow people to log in to asterisk system remotely
using some kind of VPN setup so they do not have to have 5060 open to
use their phones in remote locations.
More information about the ILUG
mailing list