Well, for the best bet, VPN the traffic. Of course, that's not always practical.
Again, if you want true SIP security you'll need to look to an Ingate product I believe. Security through obscurity is not much security at all. Sure, it protects you against a port scan which may fend off some script kiddies... Mike -----Original Message----- From: Peter Selc [mailto:[email protected]] Sent: Thursday, August 06, 2009 7:04 AM To: Picher, Michael Cc: Scott Lawrence; [email protected] Subject: Re: [sipx-users] remote worker can't register If I leave standard port, it can be easily scanned by some robot. DDOS won't hurt so much, but if attacker manages to register, then he can make outbound calls and if I find it out too late, we can receive high bills. Is it possible to use SRTP / TLS if phone supports it? Or are there any other suggestions how to increase security? Regards, Peter _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-users sipXecs IP PBX -- http://www.sipfoundry.org/
