subject:"Re\: \[asterisk\-users\] Feature access codes"

Re: [asterisk-users] Feature access codes

2016-10-16 Thread Doug Lytle


On 10/16/2016 08:49 AM, tux john wrote:

I did edit the features.conf. what about extensions.conf?


I would suggest you read the following:

http://www.voip-info.org/wiki/view/Asterisk+config+features.conf

http://www.asteriskdocs.org/en/3rd_Edition/asterisk-book-html-chunk/AdditionalConfig_id256654.html

Doug

-- 
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --

Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016
  http://www.asterisk.org/community/astricon-user-conference

New to Asterisk? Start here:
  https://wiki.asterisk.org/wiki/display/AST/Getting+Started

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] Feature access codes

2016-10-16 Thread tux john

I did edit the features.conf. what about extensions.conf?
On 16/10/2016, 14:45 Doug Lytle  wrote:

  

  On 10/16/2016 02:33 AM, tux john wrote:


  The problem is that I do not know how to configure the feature access codes including transfer.


Review features.conf

Doug

 -- _ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016 http://www.asterisk.org/community/astricon-user-conference New to Asterisk? Start here: https://wiki.asterisk.org/wiki/display/AST/Getting+Started asterisk-users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
  


-- 
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --

Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016
  http://www.asterisk.org/community/astricon-user-conference

New to Asterisk? Start here:
  https://wiki.asterisk.org/wiki/display/AST/Getting+Started

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] Feature access codes

2016-10-16 Thread Doug Lytle


On 10/16/2016 02:33 AM, tux john wrote:
The problem is that I do not know how to configure the feature access 
codes including transfer.


Review features.conf

Doug

-- 
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --

Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016
  http://www.asterisk.org/community/astricon-user-conference

New to Asterisk? Start here:
  https://wiki.asterisk.org/wiki/display/AST/Getting+Started

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] Feature access codes

2016-10-15 Thread tux john

Thanks for the reply. I do know the security practices and I am using VoIP. The problem is that I do not know how to configure the feature access codes including transfer.
On 15/10/2016, 21:42 Steve Edwards  wrote:

On Sat, 15 Oct 2016, tux john wrote:

> Hi. Kinda new to the area and I would like some help please. I have
> asterisk 11 in my system and I have 10 users and 12 DIDs. One did routed
> to each user and 2 DIDs for faxing. Everything works fine but I do not
> have call transfer between extensions and feature access codes. I have
> read somewhere that enabling call transfer can be a security hole for
> sip attackers.

Are these incoming calls copper or VOIP?

If you only accept copper calls, make sure Asterisk is only listening to
127.0.0.1 and enforce this policy with another layer dropping any incoming
SIP packets at the firewall.

If you only intend to accept calls from your ISP, configure Asterisk to
only accept calls from your ISP, and enforce this policy at the firewall.

If you accept calls from everyone, re-think your definition of 'everyone.'
It probably does not include Iraq, North Korea, China, Russia, etc.
Configure Asterisk and your firewall accordingly.

Beyond this, follow 'best practices' (google for sip best practices --
John Todd did a list years back, Nerdvittles probably will also be a good
resource) like long, random user names and passwords, only allow needed
features to each class of users, etc.

--
Thanks in advance,
-
Steve Edwards sedwa...@sedwards.com Voice: +1-760-468-3867 PST
https://www.linkedin.com/in/steve-edwards-4244281

--
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --

Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016
http://www.asterisk.org/community/astricon-user-conference

New to Asterisk? Start here:
https://wiki.asterisk.org/wiki/display/AST/Getting+Started

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/asterisk-users

-- 
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --

Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016
  http://www.asterisk.org/community/astricon-user-conference

New to Asterisk? Start here:
  https://wiki.asterisk.org/wiki/display/AST/Getting+Started

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] Feature access codes

2016-10-15 Thread Steve Edwards


On Sat, 15 Oct 2016, tux john wrote:

Hi. Kinda new to the area and I would like some help please. I have 
asterisk 11 in my system and I have 10 users and 12 DIDs. One did routed 
to each user and 2 DIDs for faxing. Everything works fine but I do not 
have call transfer between extensions and feature access codes. I have 
read somewhere that enabling call transfer can be a security hole for 
sip attackers.


Are these incoming calls copper or VOIP?

If you only accept copper calls, make sure Asterisk is only listening to 
127.0.0.1 and enforce this policy with another layer dropping any incoming 
SIP packets at the firewall.


If you only intend to accept calls from your ISP, configure Asterisk to 
only accept calls from your ISP, and enforce this policy at the firewall.


If you accept calls from everyone, re-think your definition of 'everyone.' 
It probably does not include Iraq, North Korea, China, Russia, etc. 
Configure Asterisk and your firewall accordingly.


Beyond this, follow 'best practices' (google for sip best practices -- 
John Todd did a list years back, Nerdvittles probably will also be a good 
resource) like long, random user names and passwords, only allow needed 
features to each class of users, etc.


--
Thanks in advance,
-
Steve Edwards   sedwa...@sedwards.com  Voice: +1-760-468-3867 PST
https://www.linkedin.com/in/steve-edwards-4244281

--
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --

Join the Asterisk Community at the 13th AstriCon, September 27-29, 2016
 http://www.asterisk.org/community/astricon-user-conference

New to Asterisk? Start here:
 https://wiki.asterisk.org/wiki/display/AST/Getting+Started

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
  http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] Feature access codes

Re: [asterisk-users] Feature access codes

Re: [asterisk-users] Feature access codes

Re: [asterisk-users] Feature access codes

Re: [asterisk-users] Feature access codes

5 matches

Site Navigation

Mail list logo

Footer information