FreePBX Best Practices?

EddieJennings

@wls-itguy said in FreePBX Best Practices?:

I'm not sure if that is the right title but here goes my question.

I'm going through all my servers (Linux and Windows) and making sure they are as secure as possible. I have a standalone box running the new FreePBX Sangoma build. I have the FreePBX firewall enabled, I have all outside traffic currently disabled as I do not, at this moment, have any remote users. Is there anything else I need to do?

Other than having a strong password for root and your PBX administrator account, sounds like you're covered. Since that PBX isn't talking to the outside world, other than its connection to your SIP provider. Other folks might think of extra stuff to harden.

NerdyDad

This is more of @JaredBusch's realm.

scottalanmiller

As long as you are totally behind a firewall, and set strong passwords, you really are quite secure.

WLS-ITGuy

@scottalanmiller said in FreePBX Best Practices?:

As long as you are totally behind a firewall, and set strong passwords, you really are quite secure.

How about SSL? Or because I'm not outward facing I don't have to worry so much about that?

scottalanmiller

@wls-itguy said in FreePBX Best Practices?:

@scottalanmiller said in FreePBX Best Practices?:

As long as you are totally behind a firewall, and set strong passwords, you really are quite secure.

How about SSL? Or because I'm not outward facing I don't have to worry so much about that?

You should use SSL if you are accessing the web interface. Isn't that how it sets up by default?

WLS-ITGuy

@scottalanmiller said in FreePBX Best Practices?:

@wls-itguy said in FreePBX Best Practices?:

@scottalanmiller said in FreePBX Best Practices?:

As long as you are totally behind a firewall, and set strong passwords, you really are quite secure.

How about SSL? Or because I'm not outward facing I don't have to worry so much about that?

You should use SSL if you are accessing the web interface. Isn't that how it sets up by default?

Not when it was originally set up.

scottalanmiller

@wls-itguy said in FreePBX Best Practices?:

@scottalanmiller said in FreePBX Best Practices?:

@wls-itguy said in FreePBX Best Practices?:

@scottalanmiller said in FreePBX Best Practices?:

As long as you are totally behind a firewall, and set strong passwords, you really are quite secure.

How about SSL? Or because I'm not outward facing I don't have to worry so much about that?

You should use SSL if you are accessing the web interface. Isn't that how it sets up by default?

Not when it was originally set up.

Maybe I just do it by habit and don't realize that it doesn't do it during the installation.

WLS-ITGuy

@scottalanmiller Mine has been set up for almost 5 years now.

scottalanmiller

@wls-itguy said in FreePBX Best Practices?:

@scottalanmiller Mine has been set up for almost 5 years now.

Oh, I think it's done during the install now.

JaredBusch

@scottalanmiller said in FreePBX Best Practices?:

@wls-itguy said in FreePBX Best Practices?:

@scottalanmiller Mine has been set up for almost 5 years now.

Oh, I think it's done during the install now.

It is not.