Security Settings
The UCM6200 provides users firewall security configurations to prevent certain malicious attack to the UCM6200
system. Users could configure to allow, restrict or reject specific traffic through the device for security and
bandwidth purpose. The UCM6200 also provides Fail2ban feature for authentication errors in SIP REGISTER,
INVITE and SUBSCRIBE. To configure firewall settings in the UCM6200, go to Web GUISystem
SettingsSecurity Settings page.
Static Defense
Under Web GUISystem SettingsSecurity SettingsStatic Defense page, users will see the following
information:
•
Current service information with port, process and type.
•
Typical firewall settings.
•
Custom firewall settings.
The following table shows a sample current service status running on the UCM6200.
Port
7777
389
2000
22
80
8089
69
9090
6060
5060
4569
5353
37435
For typical firewall settings, users could configure the following options on the UCM6200.
Table 11: UCM6200 FirewallStatic DefenseCurrent Service
Process
Type
Asterisk
TCP/IPv4
Slapd
TCP/IPv4
Asterisk
TCP/IPv4
Dropbear
TCP/IPv4
Lighthttpd
TCP/IPv4
Lighthttpd
TCP/IPv4
Opentftpd
UDP/IPv4
Asterisk
UDP/IPv4
zero_config
UDP/IPv4
Asterisk
UDP/IPv4
Asterisk
UDP/IPv4
zero_config
UDP/IPv4
Syslogd
UDP/IPv4
UCM6200 Series User Manual
Protocol or Service
SIP
LDAP
SCCP
SSH
HTTP
HTTPS
TFTP
SIP
UCM6200 zero_config service
SIP
SIP
UCM6200 zero_config service
Syslog
P a g e
|
58