Security Issues
Issue 1 October 2003 31
Security Issues
The term security has broad connotations. In the context of Avaya Computer Telephony,
security refers to toll fraud issues only. The next two sections provide some basic
guidelines for effecting secure, isolated LAN arrangements for DEFINITY. For more
information about security-related issues, see Chapter 2 of Avaya Computer Telephony 1.3
G3 PBX Driver and CVLAN Administration and Maintenance
(DEFNETM.PDF).
Security — DEFINITY Servers CSI, SI, R
and S8700 Configurations
If your Avaya Computer Telephony configuration relies on a platform that uses the MAPD
(DEFINITY Server CSI, SI, R and S8700 Configurations) refer to Figure 1-3 as you read
this section.
Isolating the DEFINITY LAN Gateway
The DEFINITY LAN Gateway system assembly should be on its own separate segment
and will consequently require its own separate LAN card. This means you will need two
network interface cards (NICs) in your Telephony Server, one for client access and one for
the connection between the DEFINITY G3 PBX Driver and the DEFINITY LAN Gateway
system assembly.
Follow these guidelines to ensure that the DEFINITY LAN Gateway system is not
accessible from the rest of the network.
● Use a separate secure link connecting the Telephony Server to the DEFINITY LAN
Gateway system.
● You will administer the IP address of the DEFINITY G3 PBX Driver during the
installation of the DEFINITY G3 PBX Driver. Do not administer the same IP address for
the DEFINITY G3 PBX Driver that your Telephony Server is using. If you do administer
the same IP address for both, you will leave your system open for possible toll fraud and
may receive a toll fraud warning.
● Make sure that IP forwarding (formerly referred to as IP routing) is turned off between
the DEFINITY G3 PBX Driver NIC and the NIC on the Avaya Computer Telephony
Server. After installing the NIC on your Avaya Computer Telephony server, configure the
connection with no IP forwarding. See “Configuring the Tserver for a Secure LAN
Gateway Connection” in Chapter 2 of Avaya Computer Telephony 1.3 G3 PBX Driver
and CVLAN Administration and Maintenance (DEFNETM.PDF).