Inter-VLAN Filtering Best Practices VoIP-SIP Security

Communication between the VLANS set up in S.04 must be filtered in order to allow only the necessary transmissions. The filtering must be of the “white-list” type, with only pre-defined communication allowed. The filtering can be done:

      -  Through defining ACLs on the switches/routers connecting the VLANs
  
      - Through placing a firewall between the VLANs
   
The filter rules can be based on IP addresses, port numbers and protocols, and TCP/IP flags in order to be as strict as possible and authorise only necessary communications. IP phones, for example, don’t need to send a media feed (i.e. RTP) to VoIP servers. So only signalisation traffic (i.e. SIP) should be authorized.

Read More:http://www.vadese.org/files/upload/Best_practices_VoIP_en_v20.pdf

Related post



Newer Post Older Post

0 comments:

Post a Comment

 

Wiki Voip And Fax Tutorials Copyright © 2010 Labloub