Hey Guys - So on our Avaya SBCE i had to set up an application relay on port 411 for our remote J179 phones to pull firmware files from the avaya IP Office. While this works great, I am concerned about the security of leaving this open all the time. I have already had several hacking attempts and registration attempts on the sbce, in which I just keep adding the hacking IP blocks to the firewall blacklist. Is there a better way to do this? Is there a way to only let whitelisted IPs use the application relay? Better yet, can I block all traffic to the sbce unless it comes from an entry on my whitelist? I read the blacklist over-rides the whitelist; so if i have a blacklist entry to block all / then it would even block the entries included on the whitelist.
Appreciate any advice..
Red Flag Submitted
Thank you for helping keep Tek-Tips Forums free from inappropriate posts. The Tek-Tips staff will check this out and take appropriate action.
Reply To This Thread
Posting in the Tek-Tips forums is a member-only feature.