I have Norstar with 6.1 Software and a Call Pilot 150 Voice Mail. I was told by my LD carrier that someone was making Intl calls from my switch. I have blocked Int'l on the lines and disabled the switch from dialing 1010XXX type calls. Is this the only thing I can do to stop them from attempting to get into and out of my switch? I do have several people who have VM notification on mailboxes and several that forward calls out of the system to Cell numbers.

Can the LD carrier block them?

It might be worth it to get the SMDR box hooked up to it and watch what is happening, cheaper than paying a big intl bill.

Have you blocked "0" calls?

Try dialing a * something code and see if that goes through. I had a Toshiba I thought was perfect and then someone discovered that if they dialed * and waited, the CLEC operator came on and put a call through to anywhere they wanted.

There is a neat trick using a pocket dialer that will let you call anywhere with total toll restriction, but I won't post it here, I like to call Israel too much.

Realisticly speaking you can play all the games you want with toll restriction but there are so many ways to defeat it, only restriction from the carrier is going to work.

The LD provider has ( o ) blocked but they are still tring to access the switch. They have actually changed the greeting on one of the mailboxes. It is pretty scary.

Check all your mailboxes to see if there are any that have the ability for outbound transfer or off prem notification and are NOT already programmed, in other words it is enabled in the COS but the user has not set it up with their own numbers. You'll also want to make sure that the passwords they are using are not the easy obvious ones like 1234 or 1111 or even leaving them the same as their extension number.

I will make sure that all VM ports are restricted or assign a filter to it with restriction for all international calls and all other numbers with override for the exact numbers that your customer use for office promise notification.I hope that helps.

I AM NEW HERE . HOW DO I START A NEW POST. I HAVE A SMDR 4 QUESTION FOR CALL ACCOUNTING.

You might also want to make sure that a mailbox cannot be initialized from off premise. Had a similar problem not too long ago, found out that if they pressed # that they could pull outside dial tone. Had to block 0, #, *. Also this particular customer had the CO put access codes on their LD. Might be worth looking into.
Good luck.
Barb

Repeating myself, a * and silence would bring on the LD operator for a customer in Long Beach.

Also, if all the phones are digital and not customer phones, email me at [email protected] and I will tell you what they may be doing. I don't want to post it here.

I have a serial printer you could borrow from a customer that is not using it now if borrowed or bought an SMDR unit. That would show who is making the calls.

I don't want to be an old hen, but if the customer doesn't want to pay something for the solution, then you could spend your life trying to defeat the hacker.

I finally found out how they are getting in and out of my System. They were able to hack into a couple of Mailboxes and change the OutBound Transfer feature to dial the Int'l number they are calling. Then all they did was dial my customers DID and press 7 which would normally call a local Cell number but instead was calling Italy. I turned off the outbound transfer made the customer make the VM password much longer that the normal 4 digits and had the LD provider block Int'l calling from this PRI. They are safe now till they think up another way to screw with us.