Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
481
Views
1
Helpful
6
Replies

voice vulnerability mitigation

jaheshkhan
Level 4
Level 4

‎08-16-2023 04:00 AM - edited ‎08-16-2023 06:51 AM

we got voice vulnerability solutions  as below:

Enable encryption: Ensure that your VoIP traffic is encrypted using secure protocols such as Secure Real-time Transport Protocol (SRTP) or Transport Layer Security (TLS). Encryption prevents eavesdropping and tampering with voice data, even if a NAC bypass occurs.

 

Use secure signaling protocols: Deploy secure signaling protocols like SIP over TLS (Transport Layer Security) or SIP over VPN (Virtual Private Network) to protect the signaling and authentication processes in your VoIP network. This helps prevent unauthorized access to VoIP services.

Implement VLANs and access control: Divide your network into Virtual LANs (VLANs) and apply access control policies to restrict communication between them. This helps contain potential threats and limits the impact of a successful NAC bypass on the VoIP network.

cucm version is  11.5

how to achieve this? 


any cisco guide in this regard?

 

Labels:
0 Helpful
6 Replies 6

b.winter
VIP
VIP

‎08-16-2023 05:20 AM

IMHO, these are not "security vulnerabilities".
These are general guidelines on how to secure your voice traffic.

Furthermore, point 3 has nothing to do with CUCM.

0 Helpful

jaheshkhan
Level 4
Level 4
In response to b.winter

‎08-16-2023 06:31 AM

This is actually solution for voice related security vulnerabilities recommended if its not done. 

if you know the right guide i can check it out.

0 Helpful

b.winter
VIP
VIP
In response to jaheshkhan

‎08-16-2023 06:49 AM

But these points are not specific fixes to solve specific vulnerabilities.
They are general guidelines and recommendations. And you (the technician) are the one, who needs to specify which guidelines you implement in which way. The answers to these questions are different from company to company. There is no global solution, that fits everywhere.

It's like saying, that you should put on a rain cover, if it's raining.

For further info, check out the security guide of Cisco CUCM.
Or search the forum.

0 Helpful

jaheshkhan
Level 4
Level 4
In response to b.winter

‎08-16-2023 06:53 AM - edited ‎08-16-2023 07:21 AM

they just want SRTP and secure signaling protocol guide.

Is there any guide for that what normally people used to setup. 

IT manager wants it. he told me to check in the forum or cisco guide . but i couldnt find any step by step guide for it

0 Helpful

b.winter
VIP
VIP
In response to jaheshkhan

‎08-16-2023 11:34 PM - edited ‎08-16-2023 11:35 PM

As written, you should check out the security guide (The forum is not here, to google things for you, which are public in the internet). But luckily for you @Nithin Eluvathingal already did that.

0 Helpful
Customers Also Viewed These Support Documents