<div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div><div class="h5"><br>
</div></div>The trouble with whitelisting, or using iptables to block 5060 (in fact<br>
* is behind a router - 5060 is port forwarded) is that traveling<br>
employees wouldn't be able to register with inbound extensions. We set<br>
up our travelers so they can connect from wherever, and be treated as if<br>
they were at a local extension. That is, the employee can dial 151, or<br>
be dialed at his extension. He can not however dial third parties, or at<br>
least isn't supposed to.<br>
<font color="#888888"><br>
sean<br>
</font><div><div></div><div class="h5"><br>
<br>
</div></div></blockquote><div><br></div><div>If you leave your asterisk box open to the world with passwords like 0000 you deserve to be hacked..</div><div><br></div><div>Are your travelling people using softphones? If they are VPN would be a good idea..</div>
<div><br></div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div><div class="h5">--<br>
_____________________________________________________________________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>
New to Asterisk? Join us for a live introductory webinar every Thurs:<br>
<a href="http://www.asterisk.org/hello" target="_blank">http://www.asterisk.org/hello</a><br>
<br>
asterisk-users mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
<a href="http://lists.digium.com/mailman/listinfo/asterisk-users" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-users</a><br>
</div></div></blockquote></div><br>