Skip to end of metadata
Go to start of metadata
In this article

We are delighted that you've chosen JeraSoft VoIP Carrier Suite for your business. Since the installation of your JeraSoft VCS is complete, there are a few important steps that we strongly recommend you to perform before using the system. The safety of your business is very important for us. Please follow these recommendations carefully.

Security Guidelines

Firewall Configuration

The first step is configuring the firewall (iptables). Configure it according to your network policy and include the following requirements:

  1. Ports tcp/22 and tcp/443 should be opened only from trusted IP addresses (include 88.99.19.205/32 and 35.205.144.20/32 for support purposes)
  2. Ports udp/1812, udp/1813, and udp/5060 should be opened from your switches/gateways IP addresses
  3. Ports tcp/22tcp/5432, tcp/6379, and tcp/873 should be opened between billing servers if you have more than one
  4. Client Portal works on ports 9080 and 9090. Make sure you open them on your firewall for the portal to work correctly

(warning)   Attention

Please perform the following checks: 

  • The existence of local user - jerasupport
  • The resolvability of a.jerasoft.net by DNS

SSH Access

For security purposes we recommend you to disable login by 'root' user. To access the server, use individual accounts for each person with sudo allowed when needed.

For support and upgrades by JeraSoft Team, keep separate 'jerasupport' account with a strong password. We recommend disabling it when not needed.

Web Access

It is recommended to disable 'admin'  account in the web interface. To access the system, create individual accounts for each person with correct permissions levels.

For support and upgrades by JeraSoft Team, keep a separate 'jerasupport' account with a strong password. We recommend disabling it when not needed.

Date & Time Configuration

It is strongly recommended to configure NTPd synchronization of date and time for all used servers.

Timezone for JeraSoft VCS servers should be set to UTC all the time. If you need to get data in other timezone, use JeraSoft VCS settings to configure it.

(warning)   Attention

You can find detailed description on how to switch timezone of your server to UTC here: How to switch time zone in UTC on the server properly?

Monitoring Configuration

To watch for critical events on the billing platform we recommend that you set up some monitoring software (e.g., zabbix or nagios). The following factors should be monitored:

  1. Current Load (load average more than 75% of CPU cores number is critical)
  2. HTTPS (site accessibility)
  3. Disk space (less than 30% of amount is critical)
  4. Swap Usage (more than 10% is critical)
  5. RAID Array State (consistency of the array for your adapter)
  6. Running Processes when using RADIUS (vcs-bbradiusd at least 3 processes running)
  7. Running Processes when using SIP Redirect (vcs-bbsipd at least 3 processes running)

After these initial configuration steps, it is time to move on to the integration stage with your switches and/or gateways. To perform this procedure, please consult the Integration Manual and Support Team.

Key steps towards starting with VCS

Aside from server configuration, there are few steps to be completed in the VCS. They will be covered in detail during general training and include:

  • Company Information – fill in your company profile with logo and other related information, which will be displayed on invoices. To perform this step, please access the 
    Management > Resellers section;
  • Currencies Setup – if you plan to use more than one currency, please access the Configuration > Currencies section and add more currencies;
  • General Parameters Check – please access the Configuration > Settings section of your VCS and check default system parameters such as date format, timezone, etc., and change them as needed. You can read more about settings in the Settings section of the VCS User Guide.

After this, you may proceed to fill in VCS with relevant information regarding customers, providers, rate tables to start using the system. This manual is intended to help you use any section and explain every single section of the system.

  • No labels