• Created by user-51089, last modified by Unknown User (oprus) on Jul 15, 2015

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 17 Next »

On this page

We are delighted that you've chosen JeraSoft VoIP Carrier Suite for your business. Since the installation of your JeraSoft VCS is completed, there are few important steps that we strongly recommend you to perform before using the system. The safety of your business is very important for us. Please follow this recommendations carefully.

Security Guidelines

Firewall Configuration

The first step is configuring the firewall (iptables). Configure it according to your network policy and include the following requirements:

  1. Ports tcp/22 and tcp/443 should be opened only from trusted IP addresses (include 5.196.141.48/32 and 88.198.26.27/32 for support purposes)
  2. Ports udp/1812, udp/1813 and udp/5060 should be opened from your switches/gateways IP addresses
  3. Ports tcp/22, tcp/5432, tcp/6379 and tcp/873 should be opened between billing servers if you have more than one

SSH Access

For security purposes we recommend you to disable login by "root" user. To access the server use individual accounts for each person with sudo allowed when needed.

For support and upgrades by JeraSoft Team, keep separate "jerasupport" account with strong password. We recommend you to disable it when not needed.

Web Access

It is recommended to disable account "admin" in the web interface. To access the system create individual accounts for each person with correct permissions levels.

For support and upgrades by JeraSoft Team, keep separate "jerasupport" account with strong password. We recommend you to disable it when not needed.

Date & Time Configuration

It is strongly recommended to configure NTPd synchronisation of date and time for all used servers.

Time zone for JeraSoft VCS servers should be set to "UTC" all the time. If you need to get data in other time zone, use JeraSoft VCS settings to configure it.

Detailed description on how to switch time zone of your server to UTC, you can find here: How to switch time zone in UTC on the server properly?

Monitoring Configuration

To watch for critical events on the billing platform we recommend that you set up some monitoring software (e.g. zabbix or nagios). The following factors should be monitored:

  1. Current Load (load average more than 75% of number of CPU cores is critical)
  2. HTTPS (site accessibility)
  3. Disk space (less than 30% of amount is critical)
  4. Swap Usage (more than 10% is critical)
  5. RAID Array State (consistency of the array for your adaptor)
  6. Running Processes when using RADIUS (vcs-bbradiusd at least 3 processes running)
  7. Running Processes when using SIP Redirect (vcs-bbsipd at least 3 processes running)

After these initial configuration steps it is time to move on to the integration stage with your switches and/or gateways. To perform this procedure please consult IM and Support Team.

Key steps towards starting with VCS

Aside from server configuration there are few steps to be completed in the VCS. They will be covered in detail during general training and include:

  • Company Information – fill your company profile with logo and other related information which will be displayed on invoices. To perform this step please access Management – Resellers section;
  • Currencies Setup – if you plan to use more than one currency please access Configuration – Currencies section and add more currencies;

  • General Parameters Check – please access Configuration - Settings section of your VCS and check default system parameters such as date format, timezone, etc. and change them as needed. You can read more about settings in the Settings section of VCS User's Guide.

After this you may proceed to fill VCS with relevant information for customers, providers, rate tables and start using the system. This manual is intended to help you use any section and explain every single part of the system.

  • No labels