Eug on 16 Jul 2004 19:16:02 -0000


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Lingo Report


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Paul wrote:

> -- Forwarded UDP ports 5060-5061 and 10000-20000 from the firewall
> to the VoIP box.  Since I have a one way firewall, I could make
> outbound calls, but I could not receive inbound calls.  I had to
> reference
> another VoIP providers Web site (Vonage) to configure my firewall
> for Lingo.  Now I can receive calls.
[snip]
> Along the way I discovered a few things about the VoIP box.  When
> the box is connected directly to the cable modem, a PC behind the
> box is *not* issued a DHCP address from the box.  Manually
> configuring the PC in the 172.25.25.x range enables it to connect.
> However, when the box is connected behind my firewall, it *will*
> issue DHCP addresses.  (What the heck is up with that?)
[snip]
> It is possible to login to the VoIP box, but I don't have the login
> and password.  The box has ports open for telnet, http, https, and
> a few other ports.

I was flipping through the Spring issue of 2600 this week and they
have a piece on VoIP, Vonage and security. Basically, it said what
you have nearly pointed to, which is that these phones open some
pretty wide holes in ones network.

The biggest complaint from the author is that Vonage refuses to
publish their IP addresses so that people can write their firewall
rules to only have these ports open for packets coming from Vonage.



-----BEGIN PGP SIGNATURE-----

iQA/AwUBQPgpLekD7QKn7f0vEQIWmgCgjcpJg/KC96EMDfJRU8BeXOaCsn4AmwVf
MH7MSbu0MOUlD3Gvxq64qDGH
=HoiX
-----END PGP SIGNATURE-----
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug