Difference between revisions of "Security"
From FusionPBX
(→Ubuntu) |
(→FreeSWITCH) |
||
| Line 21: | Line 21: | ||
* Disable the FreeSWITCH modules you are not using. Below is a list of modules not currently being used. This list is not comprehensive. In FusionPBX the modules are found in the menu in system -> modules. | * Disable the FreeSWITCH modules you are not using. Below is a list of modules not currently being used. This list is not comprehensive. In FusionPBX the modules are found in the menu in system -> modules. | ||
*** xml rpc (not currently used by FusionPBX) | *** xml rpc (not currently used by FusionPBX) | ||
| + | ****removed from Debian/Ubuntu Install script on 10/1/2012 | ||
*** xml curl | *** xml curl | ||
| − | *** | + | ****removed from Debian/Ubuntu Install script on 10/1/2012 |
| − | * | + | *** httapi |
Revision as of 14:09, 1 October 2012
A place to share security best practices with the community.
Contents
General
- Limit Exposure
- Use FusionPBX/FreeSWITCH behind a firewall.
Firewall
Limit ports exposed to the Internet.
Ubuntu
VPN
- Use a VPN for external endpoints.
- OpenVPN with a UDP tunnel works great for VOIP.
- Use a VPN for external endpoints.
Layered Security
Fail2ban
monitor logs then bans ip addresses for those that are found in the log to be abusing the system.
For information about Fail2Ban on FreeSWITCH, see their wiki
FreeSWITCH
- Disable the FreeSWITCH modules you are not using. Below is a list of modules not currently being used. This list is not comprehensive. In FusionPBX the modules are found in the menu in system -> modules.
- xml rpc (not currently used by FusionPBX)
- removed from Debian/Ubuntu Install script on 10/1/2012
- xml curl
- removed from Debian/Ubuntu Install script on 10/1/2012
- httapi
- xml rpc (not currently used by FusionPBX)
