Difference between revisions of "I have a problem with Security"
From Kolmisoft Wiki
Jump to navigationJump to search
m |
|||
| Line 22: | Line 22: | ||
2. Check if there are unauthorized connections in PBX<br> | 2. Check if there are unauthorized connections in PBX<br> | ||
3. [[How to block someone's IP| Block]] all unknown IPs from your system<br> | 3. [[How to block someone's IP| Block]] all unknown IPs from your system<br> | ||
4. | 4. In some cases external PBX'es were hacked, related problems are reviewed [http://nerdvittles.com/?p=737 here], [http://www2.elastix.org/en/component/kunena/116-security/73040-how-to-change-the-default-asteriskuser-password.html here] and [http://blogtech.oc9.com/index.php?option=com_content&view=article&catid=18:securite--security&id=263:security2011-04&Itemid=6 here].<br> | ||
5. Setup a secure VPN connection from your PBX to MOR. | 5. Setup a secure VPN connection from your PBX to MOR. | ||
Revision as of 06:54, 3 May 2011
You see a lot of unknown calls in your statistics with unusual destinations and callerIDs.
- First of all check if Fail2Ban is installed
You should see such lines after issuing command iptables --list :
[root@kolmisoft]# iptables --list Chain INPUT (policy ACCEPT) target prot opt source destination DROP all -- XX.XX.XX.XX anywhere fail2ban-SSH tcp -- anywhere anywhere tcp dpt:ssh fail2ban-ASTERISK all -- anywhere anywhere DROP all -- XX.XX.XX.XX anywhere DROP all -- XX.XX.XX.XX anywhere
Where XX.XX.XX.XX is some IP address
- If you see unauthorized calls from your connected PBX like FreePBX, Elastix:
1. Make sure you use strong passwords for authentication
2. Check if there are unauthorized connections in PBX
3. Block all unknown IPs from your system
4. In some cases external PBX'es were hacked, related problems are reviewed here, here and here.
5. Setup a secure VPN connection from your PBX to MOR.
