Security

From FusionPBX

Revision as of 20:58, 29 September 2012 by Mcrane (talk | contribs) (→‎General)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

A place to share security best practices with the community.

General

Limit Exposure
- Use FusionPBX/FreeSWITCH behind a firewall.
- Limit ports exposed to the Internet.
- Use a VPN for external endpoints.
  - OpenVPN with a UDP tunnel works great for VOIP.
Layered Security
Fail2ban - monitor logs then bans ip addresses for those that are found in the log to be abusing the system.

FreeSWITCH

Disable the FreeSWITCH modules you are not using. Below is a list of modules not currently being used. This list is not comprehensive. In FusionPBX the modules are found in the menu in system -> modules.
- - xml rpc (not currently used by FusionPBX)
  - xml curl
  - httapi
Fail2ban - use it to watch FreeSWITCH logs and ban

Retrieved from "http://wiki.fusionpbx.com/index.php?title=Security&oldid=2380"

Navigation menu