Duane, Thanks for weighing in. By accessing SIP phones I meant just access to it's webmanagement which is TCP again; it's easy setup for the VoIP Technician and not end user trying to make a call. I totally agree with you on UDP over TCP use. I believe that VPN is a stronger candidate for SIP phones (media stream) and not SSH connections. -Bruce
> Date: Wed, 3 Feb 2010 18:12:31 +1000 > From: [email protected] > To: [email protected] > CC: [email protected]; [email protected] > Subject: Re: [on-asterisk] Secure Asterisk > > Bruce N wrote: > > SSH tunneling is amazing with accessing sip phones inside a network for a > > voip technician but VPN is native to all OS now a days and it's sort of > > known to some of the end users. > > SSH is over TCP, most VPNs use UDP, doing UDP over UDP is fine, but > doing UDP over TCP is a bad idea most if not all the time, the previous > solution was to open a port based on the IP the SSH connection comes from. > > -- > > Best regards, > Duane > > http://www.freeauth.org - Enterprise Two Factor Authentication > http://www.nodedb.com - Think globally, network locally > http://www.sydneywireless.com - Telecommunications Freedom > http://e164.org - Global Communication for the 21st Century > > "In the long run the pessimist may be proved right, > but the optimist has a better time on the trip." > _________________________________________________________________ Check your Hotmail from your phone. http://go.microsoft.com/?linkid=9708121
