I just found a major security issue with 2 systems using Bandwidth.com. The end users are unrelated.
The issue is with Bandwidth's Edgemarc. Bandwidth.com has opened port 5060 to the entire Internet, unrestricted, and forwards anything received on 5060 to the cutomer's PBX, router, gateway, UC500. With this configuration anyone on the Net can point a SIP client to the Edgemarc's public IP and make a phone call. When the SIP messages are forwarded to the router/UC500 they appear to be sourced from the "trusted" Edgemarc IP, but in fact are sourced from anywhere on the Net. Note: Bandwidth.com doesn't use SIP registration, they expect you to "trust" the IP of their servers or gear.
The disturbing points, the Bandwidth techs had a difficult time understanding why this was a risk....even after watching multiple rougue international calls traverse the Edgemarc. Also disturbing, one of these Edgemarcs was locked down at one time because I tested for this vulnerability at the time if install, but now that is no longer the case and Bandwidth techs insisted that port 5060 should be open to the entire Internet!?!?!
Bottom line, if you are connecting to Bandwidth.com using an Edgemarc or any Bandwidth gear at your site, check the security. Better yet, do not trust Bandwidth.com with the security of your network. On a similar, but unrelated note, in one of these cases the end customer also advised me that Bandwidth.com had also left the default passwords on the Edgemarc as well. The passwords have since been changed due to efforts by the end customer.
Is there a way in UCCE with using an admin script maybe using the email application in Call Studio to send out an email? I know in UCCX you can send out an email if the script were to fail but is there a way to do it in UCCE? Any help would be great!
Fun lab with Packet Tracer and running Cisco CME with 3 ip phones, 3 laptops, 1 switch, and 1 router. Fun lab with repetition. You will be able to test your phones and laptop for connectivity etc. Solution;see attached CME Packet Tracer L...
How to configure IP Address for Cisco Integrated Management Controller CIMC. The Cisco Unified Computing System (UCS) is a data center product composed of computing hardware, virtualization support, switching fabric, and management software.
QuestionHi Team,I just need to confirm if we change NTP servers on UCCX, will it affect the license on UCCX 12.0 ?Do we need to re-host after updating NTP?Already done on CUCM and CUC , and it didn't affect but not sure for CCX. Thank you ...