08-16-2023 04:00 AM - edited 08-16-2023 06:51 AM
we got voice vulnerability solutions as below:
Enable encryption: Ensure that your VoIP traffic is encrypted using secure protocols such as Secure Real-time Transport Protocol (SRTP) or Transport Layer Security (TLS). Encryption prevents eavesdropping and tampering with voice data, even if a NAC bypass occurs.
Use secure signaling protocols: Deploy secure signaling protocols like SIP over TLS (Transport Layer Security) or SIP over VPN (Virtual Private Network) to protect the signaling and authentication processes in your VoIP network. This helps prevent unauthorized access to VoIP services.
Implement VLANs and access control: Divide your network into Virtual LANs (VLANs) and apply access control policies to restrict communication between them. This helps contain potential threats and limits the impact of a successful NAC bypass on the VoIP network.
cucm version is 11.5
how to achieve this?
any cisco guide in this regard?
08-16-2023 05:20 AM
IMHO, these are not "security vulnerabilities".
These are general guidelines on how to secure your voice traffic.
Furthermore, point 3 has nothing to do with CUCM.
08-16-2023 06:31 AM
This is actually solution for voice related security vulnerabilities recommended if its not done.
if you know the right guide i can check it out.
08-16-2023 06:49 AM
But these points are not specific fixes to solve specific vulnerabilities.
They are general guidelines and recommendations. And you (the technician) are the one, who needs to specify which guidelines you implement in which way. The answers to these questions are different from company to company. There is no global solution, that fits everywhere.
It's like saying, that you should put on a rain cover, if it's raining.
For further info, check out the security guide of Cisco CUCM.
Or search the forum.
08-16-2023 06:53 AM - edited 08-16-2023 07:21 AM
they just want SRTP and secure signaling protocol guide.
Is there any guide for that what normally people used to setup.
IT manager wants it. he told me to check in the forum or cisco guide . but i couldnt find any step by step guide for it
08-16-2023 08:10 AM
Here is your security guide or CUCM 11.5
Hope you are using restricted version of CUCM.
08-16-2023 11:34 PM - edited 08-16-2023 11:35 PM
As written, you should check out the security guide (The forum is not here, to google things for you, which are public in the internet). But luckily for you @Nithin Eluvathingal already did that.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide