Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 28 subscribers
  • Views 5555 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Protect SIP

Kristof Felsö

Hi Guys,

 

Can i protect our VOIP System with the XG Firewall? We need to have Port 5060 open because we have iPhones as Softphones. Our Starface VOIP Systems send us mails that some one trys to register an Phone. The attacker try it 10 tims in 1 Minute. The starface block it and set it on the Blacklist.

But is there an way to protect the Starface System with our Sophos XG Firewall.

As allowed Client Networks i select only Countrys which we need.

Can Intrusion Prevention help here?

 



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    This is a general issue with SIP setup like this.

    If you have to open a DNAT SIP 5060, everybody can potential find this DNAT and try to use, as it is a standard.

    Is it possible to configure your VOIP System to work without a DNAT?

    Cheers

     

  • 0 in reply to LuCar Toni

    Hi,

     

    We need this DNAT because the Voip Server is running on azure as an VM and we need to connect with our Softphones to the TK Server.

    I don´t know an other way for connection with Sopftphones. And Softphones need Port 5060.

     

    Is the Intrusion Prevention Feature from the XG helpful to protect?

    Because the attack is an kind of DDOS Attack. The Attacker trys to login over Port 5060 very often and trys to find out the password. Can i setup something like DDOS Protection for this?

  • 0 in reply to Kristof Felsö

    Hi,

    on your rule you should be able to set the source eg the azure server which will stop the attacks.

    Ian

Reply Children