[Asterisk-Users] * and Cisco routers

brian k. west brian at bkw.org
Tue May 18 22:35:25 MST 2004


I'm not saying not to use them but firewalls and VPN are not very voip
friendly.  VPN adds latency and jitter and firewalls play hell with RTP
ports.

bkw

----- Original Message ----- 
From: "Ronald R. McDaniel" <rmcdaniel at southerncomp.net>
To: <asterisk-users at lists.digium.com>
Sent: Tuesday, May 18, 2004 10:27 PM
Subject: Re: [Asterisk-Users] * and Cisco routers


>
> ACL's are no way near as secure as firewalls and VPNs.  ACLs only look at
> IP address and ports.  Spoof the IP address and find out the port and you
> can get in.  I am not saying that this would be an easy task, it would be
> pretty difficult to do under most situations.  Typically we use ACLs along
> with our firewalls when implementing security solutions for our customers.
>
>
> brian k. west
> > I personally think firewalls are a stopgap measure for the real problem.
> > A
> > firewall and VPN are not a fool proof method of protection.  Fix the
real
> > problem instead of hiding it.  I usually dont use a real firewall but
ACLs
> > and other similar methods to lock down where/who can access a box.  As
for
> > cisco routers we use ACL's to lock those where the asterisk box is the
> > only
> > one that can access it.
> >
> > bkw
> >
>
>
> Ronald R. McDaniel
> Southern Computer Services, Inc.
> rmcdaniel at southerncomp.net
> (251) 444-3136 office
> (251) 446-3137 fax
> (251) 294-1202 cell
> _______________________________________________
> Asterisk-Users mailing list
> Asterisk-Users at lists.digium.com
> http://lists.digium.com/mailman/listinfo/asterisk-users
> To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-users
>





More information about the asterisk-users mailing list