I've been reading over the old and new threads about securing a PBX.
In summary there has been a subtle shift (over the years) from making the PIAF distro "a well-maintained PBX, with security in mind" to "a machine with no open ports, secured behind a hardware firewall".
Realising that total security consists of many layers and a multi-faceted approach, what are the recommendations when a hardware firewall is not available?
In the case of a hosted (VPS), whether from a PBX-oriented or a more general provider, what are the options for best securing a PIAF server connected directly to the internet, unable to use a hardware firewall?
In summary there has been a subtle shift (over the years) from making the PIAF distro "a well-maintained PBX, with security in mind" to "a machine with no open ports, secured behind a hardware firewall".
Realising that total security consists of many layers and a multi-faceted approach, what are the recommendations when a hardware firewall is not available?
In the case of a hosted (VPS), whether from a PBX-oriented or a more general provider, what are the options for best securing a PIAF server connected directly to the internet, unable to use a hardware firewall?