Cellusys SIP Firewall

VoIP and VoLTE are especially vulnerable due to their exposure to computer networks and the accessibility of IP protocols. Session Border Controllers (SBCs) may offer some controls, however a SIP firewall adds another valuable layer of security as well as the ability to configure rules and view reports of all network data on one platform.

Description

VoIP and VoLTE are especially vulnerable due to their exposure to computer networks and the accessibility of IP protocols. Session Border Controllers (SBCs) may offer some controls, however a SIP firewall adds another valuable layer of security as well as the ability to configure rules and view reports of all network data on one platform.

Unified or Independent

SIP sends VoIP traffic using transport layer protocols UDP, TCP, or SCTP. In combination with the SS7 firewall, the SIP firewall provides a complete security solution for phone calls over all protocols. SIP Firewall in combination with the Diameter Firewall is an effective solution for all VoLTE protocols.

  • All modules of the Protect Unified Signalling Firewall support cross-checking of messages across different protocols to ensure no vulnerabilities persist
  • All modules intercept both national and international messages
  • Uses REST API integration
  • All Cellusys products support virtual deployment or can be installed on our customized servers

 

Deep Inspection

The SIP Firewall performs deep packet inspection of SIP messages by processing the SDP payload as well as SIP header fields. This provides extra protection by screening data coming into the network, and detecting anomalies before they reach the SBC.

Defends Against Attacks

Based on the validation of each message, the firewall can rate limit, modify, drop, tag, or log messages.

This defends against IP and ID spoof attacks, as well as TDoS. The firewall can also prevent Wangiri and IRSF by blocking known fraudulent numbers.

Signalling Providers and Signalling Hubs

Signalling is your business — at least make it secure. We have provided many Tier 1 signalling hubs with the capability to control and secure their signalling.

Compliance

Fully compliant with GSMA IR.34

In IR.34 the GSMA has published some guidelines and requirements for IPX provider networks that include security and screening recommendations. As a member of the GSMA, Cellusys is one of many members currently drafting the first release of SIP guidelines. The SIP Firewall is compliant with all impending GMSA guidelines.

Accessible Reporting

  • Equipped with powerful (yet agile) reporting and alerting features, not only will your network be secure, you can be sure to have the most accurate information about your network traffic and security at your fingertips
  • Customise real-time alerts to be notified the moment a threat occurs
  • Everyone on your team can be provided proper access levels and customise reports to suit their individual needs (no matter their level of technical expertise) thanks to the intuitive GUI
  • Easily set alerts or publish reports as broad as traffic overview or drill down to monitor a suspicious caller ID. Troubleshoot VIP complaints and monitor message volumes with the touch of a button.

Additional information

Brand

Cellusys

Type

SS7/SMS Firewall