Published on May 8th, 2015 | by David Frith1
Why Firewalls are not Enough
Firewalls and Unified Threat Management (UTM) are ubiquitous in today’s networks as they offer comprehensive protection against blended threats. But these devices offer little coverage in VoIP security protection. Firewalls and UTM focus on data security, email, web, worms, trojans and so on. None of these data applications are “real time”, where VoIP requires immediate application of security policies.
In addition, the inherent function of firewalls is to deny all unsolicited traffic. Whereby, the act of making a phone call is an unsolicited event, thus, firewalls can be counterproductive to an effective VoIP deployment by denying VoIP traffic.
Furthermore, firewalls do not provide the SIP protocol addressing needs to rewrite and re-address proper SIP signalling and media negotiations. The purpose of an SBC is to enhance the “real time” VoIP security policies to the existing security infrastructure, and focus on establishing reliable SIP communications instead of just “poking holes” in your firewall to allow phone calls through at the risk of breaching security.
Share this story with your friends or work colleagues. If you want to stay up to date with our latest products, industry news and offers you can sign up to our monthly newsletters, keep up to date with us on Facebook or follow us on twitter @VoIPon.