Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
Buying anything on Amazon? Please use the Geekzone Amazon aff link.




30 posts

Geek


Topic # 105338 2-Jul-2012 20:47 Send private message

I have my IP PBX working, it works with remote extensions and everything works perfectly,

I have ports open on my router forwarding to the internal IP address of the PBX but when I check whether I can see if the ports are open from canyouseeme.org it tells me port 5060 isn't open, yet it is, is this weird or have I missed something really obvious?

Create new topic
20361 posts

Uber Geek
+1 received by user: 1912

Moderator
Trusted
Biddle Corp
Subscriber

  Reply # 649777 2-Jul-2012 20:59 Send private message

It's not surprising, it depends entirely what it's doing to test for open ports.

You really need to understand the deeper aspects if TCP/IP to understand why, but in effect most scanning is TCP based since you can scan for SYN packets or responses.

SIP typically uses UDP which is a connectionless protocol.




30 posts

Geek


  Reply # 649779 2-Jul-2012 21:06 Send private message

it just seemed bizzare as none of the SIP ports actually showed open yet all the ports for the microsoft crap do, but she works a treat

I am loving my IP pbx though after a couple of little teething issues its run without fault or even a restart for 6 months,

20361 posts

Uber Geek
+1 received by user: 1912

Moderator
Trusted
Biddle Corp
Subscriber

  Reply # 649798 2-Jul-2012 21:43 Send private message

What sort of PBX are you using? You clearly need to be aware of the massive security implications of leaving a PBX with port 5060 open to the internet. Unless you have good security in place it's not a case of if it will be compromised, but when.




30 posts

Geek


  Reply # 649800 2-Jul-2012 21:47 Send private message

Its lurking behind an cisco ASA 5505 on a private VLAN segmented off from the rest of the network,

and the wife has a newfoundland so if anyone gets in she'll set him onto them after she chews their ear off

2073 posts

Uber Geek
+1 received by user: 292

Trusted
Subscriber

  Reply # 649816 2-Jul-2012 22:58 Send private message

Being behind an ASA with port 5060 open to the world isn't exactly any safer than having it's arse hanging out on the internet unprotected.

Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

Windows 10 News - 22 Jan
Created by Regs, last reply by Technofreak on 25-Jan-2015 22:16 (103 replies)
Pages... 5 6 7


Police Speed Campaign - Summer 2014/2015
Created by nzkiwiman, last reply by KiwiNZ on 25-Jan-2015 09:21 (74 replies)
Pages... 3 4 5


Police above the law ?
Created by heylinb4nz, last reply by Geektastic on 24-Jan-2015 13:22 (115 replies)
Pages... 6 7 8


How (not) to run a hotel
Created by MikeAqua, last reply by Glassboy on 25-Jan-2015 22:10 (63 replies)
Pages... 3 4 5


Spark customers get Lightbox free for 12 months
Created by freitasm, last reply by nyquist on 25-Jan-2015 10:24 (128 replies)
Pages... 7 8 9


Customer services changes
Created by freitasm, last reply by mattbush on 22-Jan-2015 15:29 (102 replies)
Pages... 5 6 7


Is Windows 10 the next great Mac OS?
Created by gehenna, last reply by KiwiNZ on 25-Jan-2015 21:11 (38 replies)
Pages... 2 3


Best place to buy mid-level laptop with SSD?
Created by SumnerBoy, last reply by richms on 24-Jan-2015 14:33 (39 replies)
Pages... 2 3



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.