10-01-2008 04:33 AM - edited 03-18-2019 09:44 PM
Hello, we have a SIP gateway and need to find a way to prevent "untrusted" phones from sending SIP messages to gain unauthorized access to make calls over the PSTN.
It is not possible to implement an access-list to reject SIP messages from the subnets where phones may reside (thereby accepting signalling only from the CallManagers), as this gateway is also providing SRST services.
Is there any way that security can be enforced in this scenario?
10-07-2008 01:31 PM
The Cisco Multiservice IP-to-IP Gateway available on Cisco IOS voice gateways provides a toolkit of session border controller functions. These include signal interworking between SIP and H.323, security with firewall and denial of service protection, topology hiding with address and port translations, billing and call detail record normalization, QoS and bandwidth management.
10-27-2008 08:32 PM
I should have been more clear - the CUCM-IOS interface is SIP, however the PSTN connection is ISDN Q931.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide