Manualshelf

User guide

ManualsBrandsAastra ManualsCell PhoneAMC 3
12345678910
10
9.2.1 AMC Controller Security Options
9.2.1.1 Password
On initial start up the administrator is forced to change the default password to a new password that has
to fulfil certain complexity requirements in order to be accepted.
9.2.1.2 Direct Connection
The AMC Controller provides a pre configured firewall and runs on a hardened Linux operating system
(OS). This allows to connect it directly to the internet without risk exposure of your internal network. The
AMC Controller also has a built-in SBC component which provides even more protection.
9.2.1.3 Indirect Scenarios
There are some possible indirect setups for connecting the AMC Controller to the internet.
Choose the one that suits your system properties and/or requirements most.
9.2.1.4 With Intermediary DMZ
A demilitarized zone (DMZ) can be used to ensure higher protection of your internal system (and its
information). “DMZ” describes a secure network area, which is separate from the internet and the local
network. Normally, this is used for servers that have to be reachable from both the internal network and
the internet (e.g. mail server, web server, etc.). In most cases a DMZ has official IP addresses.
9.2.1.5 Behind a Firewall with NAT and Port Forwarding
If the DMZ scenario is not an option, port forwarding and NAT behind a firewall is also supported. Of
course a firewall can also be provided by the AMC Controller itself.
9.2.2 Security Guidelines
The AMC 3 dual mode handset requires corporate WLAN access. The service can be based on the
unique SSID using wireless authentication and encryption using WPA / WPA2-PSK. A typical secure
deployment scenario can be found on next page.
Figure 3: Voice over WLAN for Dual Mode Solution