to trace a supected attack

Discussion in 'General' started by tristanisole, May 22, 2009.

  1. tristanisole

    Joined:
    May 6, 2009
    Messages:
    15
    Likes Received:
    0
    in my network i use elastix as my pbx server
    but today i face a situation..
    when an outside call rings someone ,not our user,can answer the phone
    i heard that he say to caller that he is our employee.
    he has a wireless connection to our network,meaning he is making his studying in our company,our student.
    so how can i trace to that attack
    i have viewed in call record.
    but i didn't find any hints,meaning IP or MAC
    so how can i find IP or mac of his computer in elastix
    plz....
     
  2. danardf

    Joined:
    Dec 3, 2007
    Messages:
    8,069
    Likes Received:
    12
    Hmmm... I think at a way.

    Maybe use SRTP protocol and use auth md5.
    But how to use the SRTP?

    Change all admin password and other user passwords.

    By the Wifi, use: WPA2 AES and not the WEP.

    Make an access list.
     
  3. mattrh

    Joined:
    Jul 15, 2008
    Messages:
    175
    Likes Received:
    0
    i would also change your wifi SSID name and disable the broadcast of the name (SSID). just little things that help.
     
  4. danardf

    Joined:
    Dec 3, 2007
    Messages:
    8,069
    Likes Received:
    12
    Of course, it's right.
     
  5. dicko

    Joined:
    Oct 24, 2008
    Messages:
    4,099
    Likes Received:
    0
    Another little thing might be to deny inbound udp on port 5060 on the wireless router.
     

Share This Page