Difference between revisions of "Asterisk on centos (deprecated)"
Line 43: | Line 43: | ||
BUT! Asterisks wiki told us: | BUT! Asterisks wiki told us: | ||
− | + | '''Be Serious About Account Security''' | |
''We can't stress enough how important it is for you to pick a strong password for all accounts on Asterisk, and to only allow access from trusted networks. Unfortunately, we've found many instances of people exposing their Asterisk to the internet at large with easily-guessable passwords, or no passwords at all. You could be at risk of toll fraud, scams, and other malicious behavior. | ''We can't stress enough how important it is for you to pick a strong password for all accounts on Asterisk, and to only allow access from trusted networks. Unfortunately, we've found many instances of people exposing their Asterisk to the internet at large with easily-guessable passwords, or no passwords at all. You could be at risk of toll fraud, scams, and other malicious behavior. | ||
For more information on Asterisk security and how you can protect yourself, check out http://www.asterisk.org/security/webinar/. | For more information on Asterisk security and how you can protect yourself, check out http://www.asterisk.org/security/webinar/. |
Revision as of 15:58, 6 June 2013
this guide was gathered from official asteriks wiki (https://wiki.asterisk.org/wiki/display/AST/Asterisk+Packages#AsteriskPackages-YUM(CentOS6/RedHatEnterpriseLinux6))
first of all install libsrtp and libsrtp-devel
yum install libsrtp libsrtp-devel
Adding the repository
rpm -Uvh http://packages.asterisk.org/centos/6/current/i386/RPMS/asterisknow-version-3.0.0-1_centos6.noarch.rpm yum update
install
yum install asterisk asterisk-configs --enablerepo=asterisk-11
install dahdi
yum install dahdi-linux dahdi-tools libpri
again upgrade
yum update
Basic configure add ser accounts into the /etc/asterisk/sip.conf
[user1] type=friend host=dynamic secret=verysecretpassword ; put a strong, unique password here instead context=users ;deny=0.0.0.0/0 ;permit=192.168.5.0/255.255.255.0 ; replace with your network settings [user2] type=friend host=dynamic secret=othersecretpassword ; put a strong, unique password here instead context=users ;deny=0.0.0.0/0 ;permit=192.168.5.0/255.255.255.0 ; replace with your network settings
We have commented deny/permit lines with ";" character coz we would like to allow users to access server from anywhere. BUT! Asterisks wiki told us:
Be Serious About Account Security We can't stress enough how important it is for you to pick a strong password for all accounts on Asterisk, and to only allow access from trusted networks. Unfortunately, we've found many instances of people exposing their Asterisk to the internet at large with easily-guessable passwords, or no passwords at all. You could be at risk of toll fraud, scams, and other malicious behavior. For more information on Asterisk security and how you can protect yourself, check out http://www.asterisk.org/security/webinar/. (c)https://wiki.asterisk.org/wiki/display/AST/Creating+SIP+Accounts
go to the Asterisk command-line interface. with simple command
asterisk
make sip reload with netx command:
sip reload