web statisticsweb stats Business Phone Systems Tech Talk Forum - VOIP & Cloud Phone Help

Business Phone Systems

Previous Thread
Next Thread
Print Thread
Rate Thread
Page 1 of 2 1 2
Joined: Mar 2001
Posts: 3,869
Member
****
OP Offline
Member
****
Joined: Mar 2001
Posts: 3,869
I have a 7100 MP10a that I put in about six months ago, the cabinet was used, but updated to latest software, had a 16DLi, a TEPRIa and a 4 station DLi on the CPU.

A couple days ago we webbed in to make a new mailbox and create a Zero destination for the voicemail.

The customer had said the day before that he was getting an error that the voicemail was full but nothing wrong could be seen on webbing in and there was no further complaint that the voicemail was full.

Now a couple days later it seems the power would go off, no display and about ten minutes later it would be back on.

I pretty much doubt that the VM work had anything to do with the power supply now but I'm throwing in all the info.

I replaced the cabinet with another used cabinet, it took about ten minutes to power up and all seemed well, then I got a call about a half hour later that it had died again.

I've got a dozen 24 button and six 28 button phones, don't think that would kill the power.

Kinda hard to believe that two KSUs that had been working fine would BOTH have a bad power supply.

Any ideas???

Thanks, Bracha


THE Bracha, old blond specialist in Rube Goldberg solutions.
Atcom VoIP Phones
VoIP Demo

Best VoIP Phones Canada


Visit Atcom to get started with your new business VoIP phone system ASAP
Turn up is quick, painless, and can often be done same day.
Let us show you how to do VoIP right, resulting in crystal clear call quality and easy-to-use features that make everyone happy!
Proudly serving Canada from coast to coast.

Joined: Jan 2005
Posts: 340
Member
*****
Offline
Member
*****
Joined: Jan 2005
Posts: 340
Make sure this sytem is behind a firewall as samsung released a bulletin about some type of DOS attacks. I would personally unplug the lan port until a firewall is installed. I had two go down this week. One I put in a firewall the other I had to replace the MP20s as it completely crashed.

Joined: Jun 2006
Posts: 3,004
Likes: 4
Moderator-Samsung
*****
Offline
Moderator-Samsung
*****
Joined: Jun 2006
Posts: 3,004
Likes: 4
We have had 2 systems in the past 2 days reboot due to being in the dmz of the router (they both have sip trunks).


once we removed the system from the dmz and put in the required port forwards the problem went away.

But it does sound like either a db corruption or something on the customers lan causing an issue (had servers running management software keep hitting the system as it didn't respond correctly to its probe)

Joined: Jul 2006
Posts: 93
Member
Offline
Member
Joined: Jul 2006
Posts: 93
It's a *really* bad idea to connect any Officeserv to the public internet:

1. You can crash them by doing a port scan (using Nmap or similar)

2. You can telnet into them using the root account, or admin account if you haven't changed it's password

(I've tried this on 7030s and 7100s with MP10 upto 4.46e)

Unlike the old DCS/iDCS systems the Officeserv systems are linux servers with some special telephony peripherals so network security shouldn't be treated differently to any other servers.

Joined: Nov 2009
Posts: 602
Samsung Moderator
*****
Offline
Samsung Moderator
*****
Joined: Nov 2009
Posts: 602
Originally Posted by tdw42
2. You can telnet into them using the root account, or admin account if you haven't changed it's password

Even if you change the admin password the default password still works. at least it did as far as 4.53 haven't tried on 4.60 with the new password they implemented.

Joined: Nov 2009
Posts: 602
Samsung Moderator
*****
Offline
Samsung Moderator
*****
Joined: Nov 2009
Posts: 602
I've been doing a bunch of testing here with different systems and found its fairly easy to crash a system even when behind a firewall with port forwards in place. You really need to make sure you block all traffic on those ports except for known IP addresses such as your office. I've been battling one location where they have figured out a way to crash the phone system so bad the voicemail corrupts and will not boot back up (7200s). When i go to login to the system after they crash it, OSDM tells me someone else is logged in from IP address XXXXXXXX but the tech programming logs do not reflect so they are not using OSDM to do it.

Joined: Oct 2012
Posts: 1
Member
Offline
Member
Joined: Oct 2012
Posts: 1
Hello!

I just had a client who emailed me about this problem. I have nothing to do with their phones, so if I can get a little information from you folks, I would appreciate it.

Genesiscomm, when you refer to the port forwards, are those only needed from the VoIP provider's IP addresses, or do public systems need to hit those ports? I assume that some ports need to be open always, at least to/from the VoIP provider's IPs, and some may only be needed for management.

On my firewalls, I can set up port forwarding that requires the remote site to log into the firewall first before the needed port is exposed. I do that with all sites that use RDP to their networks. That way, port scans show nothing open.

All I know about their phone system is that the WAN side is on a different IP and not touching their firewall, and there is a LAN connection that they have disconnected for now. I am not sure of the LAN connection's purpose.

Any help is appreciated!

Gregg

Joined: Mar 2001
Posts: 3,869
Member
****
OP Offline
Member
****
Joined: Mar 2001
Posts: 3,869
I have the Samsung Technical Bulletin 2012-10-16 I can email you, it won't let me copy the text and paste.

Send a real email address to phones at dock period net

I spelled out the email to avoid spammers, replace the at with @ and the period as .


THE Bracha, old blond specialist in Rube Goldberg solutions.
Joined: Mar 2001
Posts: 3,869
Member
****
OP Offline
Member
****
Joined: Mar 2001
Posts: 3,869
Oh, and THANK YOU SO MUCH.

Customer unplugged the cable from the LAN port and all rebooting has stopped, system is fine.

Sometimes I am posting to help others and I'm really grateful you all came through to help me when I need help.

Thanks again, Bracha


THE Bracha, old blond specialist in Rube Goldberg solutions.
Joined: Nov 2009
Posts: 602
Samsung Moderator
*****
Offline
Samsung Moderator
*****
Joined: Nov 2009
Posts: 602
G-Man
Providers or techs that need to access the system need the ports forwarded, ie 5060, 5003, 5090.... Depending on your firewall you can restrict it down to certain IP's that can access those ports. With linksys or DD-WRT you want your first entry to be the DENY ALL then after add your ALLOW ip's. Your only downside to this will be if your SIP provider regularly changes IP addresses, mine for the most part stay the same and they notify me before they change.

As far as your customer with the LAN on a public, you want to put a firewall in front of that as all ports are exposed to anyone and as said before certain passwords you cannot change so the system is very vulnerable.

Page 1 of 2 1 2

Moderated by  nameless, pvj 

Link Copied to Clipboard
Forum Statistics
Forums84
Topics94,262
Posts638,696
Members49,757
Most Online5,661
May 23rd, 2018
Popular Topics(Views)
211,098 Shoretel
187,709 CTX100 install
186,794 1a2 system
Newest Members
BPopilek, Rich F, LewisR, TDKs79, Buttinset
49,757 Registered Users
Top Posters(30 Days)
dexman 18
Toner 12
TDKs79 8
pvj 4
Who's Online Now
1 members (Curlycord), 124 guests, and 250 robots.
Key: Admin, Global Mod, Mod
Contact Us | Sponsored by Atcom: One of the best VoIP Phone Canada Suppliers for your business telephone system!| Terms of Service

Sundance Communications is not affiliated with any of the above manufacturers. Sundance Phone System Forums - VOIP & Cloud Phone Help
©Copyright Sundance Communications 1998-2024
Powered by UBB.threads™ PHP Forum Software 7.7.5