Cisco Support Community
Community Member

Call Attack!

My client received a call from their service provider (ATT) that they reported over 700 calls placed from Friday, spec to places in Cuba and Canada on their main line number!

Would you know if I can access the call logs in some way to check what ext they were being made from or something on those lines?

I can block the outgoing international numbers but is there something I should check to make sure this does not happen in the future or  does the issue lie at the service provider end?

Everyone's tags (4)
Cisco Employee

Re: Call Attack!

Was this site configured by CCA or CLI? If you used CLI, and you have DID trunks, without all DID numbers mapped to a DN, the calls maybe toll fraud, in which case your customer may be liable. CCA 1.8 and above sets up the system correctly to prevent common toll fraud.

Here is document laying out the issues of common toll fraud for CLI admin;

To track calls placed, if not logging calls via Call Details Reporting (CDR) to an accounting system, you can use the UC500/CME HTML admin tool to show call history feature, By default the number of calls shown is pretty short, so more recent calls maybe overwriting older calls placed. Here is link to access the tool,

Then use the reports menu, call history.

If you want to setup call accounting, you need a server to log the calls. We recommend ISI or veramark. Details here; and some other details here;

Ron Lewis


Community Member

Re: Call Attack!

Thanks Ron! The document was really helpful.

CreatePlease to create content