Overview
Under Security Rules, you manage IP-based access restrictions and call frequency limits for your Virtual-Call Cloud PBX. With allowed and blocked IP addresses, you control which devices and networks can access the system. The outbound call frequency restriction protects against abuse through excessive outgoing calls in a short period of time.
Prerequisites
- Administrator access to the Virtual-Call Cloud PBX
Page Overview
Navigate to Security → Security Rules. The page contains three tabs:
- Allowed IPs: Manages the whitelist of IP addresses and domains that are permitted to access the system.
- Blocked IPs: Displays automatically blocked IP addresses (blacklist) after detected attacks.
- Outbound Call Frequency Restriction: Configures limits for outbound call frequency per extension or trunk.
Tab: Allowed IPs
Navigate to Security → Security Rules → Allowed IPs.
The overview displays all allowed IP entries with the columns Name, IP/Domain, and Operations. The buttons Add and Delete as well as a Search field are available.
Adding an Allowed IP Address
Click Add to create a new allowed IP address or domain.
Section: Basic
| Field | Description |
|---|---|
| Name | Name for the entry. Required. |
| Description | Optional description of the entry. |
Section: Allowed IP Address / Domain
| Field | Description |
|---|---|
| Type | Type of the entry (e.g., "IP Address"). Required. |
| IP Address | The IP address to allow. Required. |
Tab: Blocked IPs
Navigate to Security → Security Rules → Blocked IPs.
This tab displays automatically blocked IP addresses—for example, after detected brute-force attacks. The Delete button allows you to remove selected entries.
Columns in the overview
| Column | Description |
|---|---|
| Defense Type | Type of detected attack |
| Block Type | Type of block applied |
| Block Range | Blocked IP range |
| Time of Attack | Timestamp of the detected attack |
| Protocol | Protocol used (e.g., SIP, SSH) |
| Attacked Port | Target port of the attack |
| Source IP Address | IP address of the attacker |
| Expiration Date | When the block will be lifted |
| Operations | Actions: Delete |
Tab: Outbound Call Frequency Restriction
Navigate to Security → Security Rules → Outbound Call Frequency Restriction.
Here you configure limits for outbound call frequency. The overview shows the columns Name, Call Frequency Restriction, and Operations. The buttons Add, Import, Export, and Delete are available.
Adding a Frequency Restriction
Click Add to create a new restriction.
| Field | Description |
|---|---|
| Name | Name of the restriction. Required. |
| Call Frequency Restriction | Defines the rules with the number of calls and time period (e.g., 5 calls per 1 second). Use + Add to define multiple rules. |
Editing a Frequency Restriction
Click the edit icon in the Operations column to modify an existing restriction.
Importing Frequency Restrictions
Click Import to import restrictions from a UTF-8 CSV file.
Configuring Security Rules
- Navigate to Security → Security Rules.
- In the Allowed IPs tab, click Add to add trusted IP addresses or domains to the whitelist.
- In the Blocked IPs tab: Regularly check if any IP addresses have been incorrectly blocked and remove them if necessary.
- In the Outbound Call Frequency Restriction tab: Adjust the existing default rule or create additional rules.
- Click Save.
Best Practices
- Add the IP addresses of your office locations and VPN gateways to the whitelist to prevent them from being accidentally blocked.
- Regularly review the blocked IPs to quickly unblock incorrectly blocked addresses (e.g., after misconfiguration).
- Keep the default outbound call frequency restriction active (e.g., 5 calls per second) to prevent toll fraud and abuse.
- Use the Export/Import function to transfer frequency restrictions between different systems.
Comments
0 comments
Article is closed for comments.