Re: Protecting asterisk from hackers
Paul Timms
7-29-20
From my own experience:

- You should clearly have a firewall running on the server hosting Asterisk.

- fail2ban should be installed and active

- Port 5038 (Asterisk Manager Interface) should only be open to the server running Standard ERP, if it's not on the same server.

- Port 5060 is the standard SIP client port, and is often attacked. It is recommended to change the SIP client port, however this is not currently possible in Standard ERP. This is registered as a wish and has been approved.

- Put a limit on the number of concurrent outgoing calls, a limit on the countries that can be called, and set a "per day" spending limit. This will prevent a hacker racking up a huge bill.
Reply
Leave Comment
You can subscribe to notifications for this post by selecting the 'star' icon on the top right corner of the post.
Latest Posts
Re: customised UserVc problems
David Delač
Hi Aldevinas, You need to customise ReadImportTaguser2 since it was added between mentioned versions, to support the changes. Best regards, David D....
14:11 15 Apr 2025
Re: Order Classes and automatic Activities for Service Orders
Carolina Valentino
are the activity set as Hansamanuals said? https://www.hansamanuals.com/main/mailnumber___62526/theconf___231/manuals/version___20250224/langcode___es/hwconvindex.htm?shortcode=HW0301SETTINGS_Order...
17:20 4 Apr 2025