manualshive.com logo in svg

Yeastar Technology MyPBX SOHO V4, Administrator'S Manual

Introducing the Yeastar Technology MyPBX SOHO V4, a powerful communication solution for small offices and home-based businesses. Enhance your knowledge and take complete control with our comprehensive Administrator's manual. Download the manual for free from our website to unlock the full potential of your MyPBX SOHO V4.

Share
Download
background image

MyPBX  SOHO  V4/V5  Administrator's  Guide 

www.yeastar.com

 

                                                                                         

Page 195 

 

Figure I-20 

 

Click ―Choose File‖ and upload IP phone‘s server certificate. IP phone will reboot 
by itself when uploaded successfully to take effect. 

 

Figure I-21 

 
When IP phone boots up again, we can check the certificate status. 
 

 

Figure I-22 

 

Step2. Upload the trusted certificate. 

The trusted certificate is the ca.crt of MyPBX. It will be sent to MyPBX during the 
registry process for authorization. 
 
Click ―Security

Trusted Certificates‖, upload MyPBX‘s ca.crt. 

Summary of Contents for MyPBX SOHO V4

Page 1: ...SOHO V4 V5 Administrator s Guide Version 70 19 0 23 Yeastar Technology Co Ltd ...

Page 2: ... System 16 5 1 Network Preferences 16 5 1 1 LAN Settings 16 5 1 2 DHCP Server 17 5 1 3 VLAN Settings 18 5 1 4 VPN Settings 19 5 1 5 DDNS Settings 20 5 1 6 Static Route 21 5 2 Security Settings 22 5 2 1 Security Center 22 5 2 2 Firewall Rules 23 5 2 3 IP Blacklist 26 5 2 4 AMI Settings 27 5 2 5 Database Grant 27 5 2 6 Alert Settings 28 5 3 LDAP Server 31 5 3 1 LDAP Server 31 5 4 Storage Management ...

Page 3: ...ld Prompts 98 6 5 3 System Prompts Settings 99 6 6 Basic Settings 100 6 6 1 General Preferences 100 6 6 2 Business Hours 103 6 6 3 Feature Codes 104 6 6 4 Voicemail Settings 107 6 7 Advanced Settings 111 6 7 1 SIP Settings 111 6 7 2 IAX Settings 118 6 7 3 Blacklist 119 6 7 4 Callback Settings 120 6 7 5 DNIS Settings 122 6 7 6 DISA 122 6 7 5 PIN User Settings 123 6 7 8 PIN Settings 125 6 7 9 Paging...

Page 4: ...ovision 141 APPENDIX E How Do I Configure Distinctive Ring Tones 145 APPENDIX F How to Use DID 147 APPENDIX G How to Use BLF Key to Choose the PSTN Line 151 APPENDIX H MyPBX Security Configuration Guide 152 APPENDIX I How to Use TLS in MyPBX 179 I 1 How to register IP phones to MyPBX via TLS 179 I 2 How to register SIP trunk to VoIP provider via TLS 203 APPENDIX J How to use LDAP 205 ...

Page 5: ...1 Features Alert Follow me Auto provision HTTPS Blacklist Integrated built in packet capture tools BLF Support Interactive Voice Response IVR Blind Transfer Intercom Zone Intercom Call Back L2TP Call Detail Records CDR LDAP Call Forward Mobility Extension Call Parking Multiple administrators Call Pickup Music On Hold Call Recording Music On Transfer Call Routing Open VPN Call transfer Paging Zone ...

Page 6: ...n LED indicates the server system is in working order Green LED indicates the system is ready Green LED indicates the Internet interface is in use Red LED stands for FXO port Orange LED indicates presence of a BRI port Green LED stands for FXS port Red LED blinks FXO port isn t connected to PSTN line Alternately blinks Red and Green FXO port has an incoming call Alternately blinks Red and Green fa...

Page 7: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 7 2 Rear Panel Figure 1 2 MyPBX SOHO V5 Rear Panel Picture ...

Page 8: ...t line into MyPBX s Ethernet port and then connect the other end of the Ethernet line with a hub switch router LAN or WAN Once connected check the status of the LED indicator A yellow LED indicates the port is in the connection process and a green LED indicates the port is properly connected 2 3 Supplying Power MyPBX utilizes the high performance switch power supply which supplies the required pow...

Page 9: ...ow to connect the MyPBX unit to a power outlet 1 Connect the small end of the power cable to the power input port on the MyPBX back panel and plug the other end of the cable into a 100VAC power outlet 2 Check the Power LED on the front panel A solid green LED indicates that power is being supplied correctly ...

Page 10: ...ver If this is the first time you are configuring MyPBX please use the default settings as below your PC should be in the same local network with MyPBX IP Address http 192 168 5 150 Username admin Password password In this example the IP address is 192 168 5 143 Figure 3 1 This is the welcome page of MyPBX SOHO after successful login Figure 3 2 ...

Page 11: ...SSL and it is safer than HTTP Figure 3 3 Note MyPBX firmware upgrade follow up Reboot the device twice to make the new firmware take effect Clean the cache and cookies of the browser before login There is a compatibility issue with IE11 Configure IE11 browser Compatibility View Settings add MyPBX IP address and check Display Intranet sites in Compatibility View and Use Microsoft compatibility list...

Page 12: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 12 Figure 3 4 Figure 3 5 ...

Page 13: ...eck the status of extensions trunks and network and system information 4 1 Line Status In this page we can check the status of extensions and trunks 4 1 1 Extension Status Figure 4 1 MyPBX Status Description Extensions 1 Extension is unavailable 2 Extension is idle 3 Extension is ringing 4 Extension is busy 5 Extension is on hold ...

Page 14: ...g for authentication Service Provider Status OK Successful registration trunk is ready for use Unreachable The trunk is unreachable Failed Trunk registration failed FXO Trunk Status Idle The port is idle Busy The port is in use Disconnected The port hasn t connected to the PSTN line More detail message please refer to the LED indication of front panel BRI Trunk Status Ok The ports connect correctl...

Page 15: ...em including the hardware firmware version and the network status 4 2 1 System Info In this page we can check the hardware firmware version or the disk usage of MyPBX Figure 4 3 4 2 2 Network Status In this page the IP address of LAN port will appear If OpenVPN and VLAN are configured well they will be displayed here too Figure 4 4 ...

Page 16: ...gs Figure 5 1 DHCP If this option is set MyPBX will use DHCP to get an available IP address from your local network Not recommended as without the right IP address you cannot access MyPBX Enable SSH This is the advanced way to access the device you can use the software putty to access the device In the SSH access you can do more advanced setting and debug it s disabled by default Port the default ...

Page 17: ...ry DNS for MyPBX IP Address2 Set the second IP Address for MyPBX Subnet Mask2 Set the second subnet mask for MyPBX 5 1 2 DHCP Server Dynamic Host Configuration Protocol DHCP is a network protocol that enables a server to automatically assign an IP address to a computer from a defined range of numbers i e a scope configured for a given network You can set a local network NTP server for MyPBX here t...

Page 18: ...tion there first then input the details in MyPBX so that the packages via MyPBX will be added the VLAN label before sending to that switch Figure 5 3 VLAN Over LAN NO 1 Click the NO 1 you can edit the first VLAN over LAN VLAN Number The VLAN Number is a unique value you assign to each VLAN on a single device VLAN IP Address Set the IP Address for MyPBX VLAN over LAN VLAN Subnet Mask Set the Subnet...

Page 19: ... networking typically using the public Internet that allows users to privately share information between remote locations or between a remote location and a business home network A VPN can provide secure information transport by authenticating users and encrypting data to prevent unauthorized persons from reading the information transmitted The VPN can be used to send any kind of network traffic s...

Page 20: ...c DNS is a method protocol network service that provides the capability for a networked device such as a router or computer system using the Internet Protocol Suite to notify a Domain Name System DNS name server to change in real time the active DNS configuration of its configured hostnames addresses or other information Figure 5 5 Enable DDNS DDNS Server Select the DDNS server you sign up for ser...

Page 21: ...out through different gateway when accessing different Internet The default gateway priority of MyPBX from high to low is OpenVPN WAN port LAN port Figure 5 6 1 Route table The current route rules of MyPBX Destination The destination network to be accessed by MyPBX Subnet Mask Specify the destination network portion Gateway Define which gateway MyPBX will go through when accessing the destination ...

Page 22: ...rough the firewall which examines each message and blocks those that do not meet the specified security criteria 5 2 1 Security Center You can check MyPBX security configuration in Security Center page And also you can enter the relevant security settings page rapidly Firewall Figure 5 7 Security Center Firewall In the Firewall tab you can check firewall configuration and alert settings By clickin...

Page 23: ...TTP port You can also enter the relevant page by clicking the button in Setting column 5 2 2 Firewall Rules Figure 5 10 Firewall Settings 1 General Settings Enable Firewall Enable the firewall to protect the device Disable Ping Enable this item net ping from remote hosts will be dropped Drop All When you enable Drop All feature system will drop all packets or connection from other hosts if there a...

Page 24: ...ce for configuration Protocol The protocols for this rule Port Initial port should be on the left and end port should be on the right The end port must be equal to or greater than start port IP The IP address for this rule The format of IP address is IP mask E g 192 168 5 100 255 255 255 255 for IP 192 168 5 100 E g 216 207 245 47 255 255 255 255 for IP 216 207 245 47 E g 192 168 5 0 255 255 255 0...

Page 25: ...to Defense By default there is no rule Figure 5 12 Add Auto Defense Rule Port The port you want to auto defense for example 8022 Protocol Select the protocol You can select UDP or TCP Rate The maximum packets or connections can be handled per unit time For example if you configure it as below Port 8022 Protocol TCP Rate 10 min Then it means maximum 10 TCP connections can be handled in 1 minute The...

Page 26: ...ure 5 13 IP Blacklist Settings Page 1 Blacklist rules You can add the rules for IP blacklist rate as you wish Figure 5 14 Add Blacklist Rule Port Auto defense port Protocol Auto defense protocol TCP or UDP IP Packets Allowed IP packets number in the specific time interval Time interval The time interval to receive IP packets For example IP packets 90 time interval 60 means 90 IP packets are allowe...

Page 27: ...interface to Asterisk There are two main types of messages on the Asterisk Manager Interface manager events and manager actions The 3rd party software can work with MyPBX using AMI interface It is disabled by default If necessary you can enable it Figure 5 15 AMI Settings Username password after enabling AMI you can use this username and password to log in MyPBX AMI IP Restriction you can set whic...

Page 28: ...onfiguration Guide Figure 5 17 Alert Settings 1 IPATTACK When the system is attacked by IP address the firewall will add the IP to auto IP Blacklist and notify the user if it match the protection rule 1 Phone Notification Settings PHONE Notification Whether enable phone notification Number The numbers could be set for alert notification users can setup multiple extension and outbound phone numbers...

Page 29: ...s are allowed please separate them by Example jerry yeastar com jason yeastar com 456 sina com Subject The subject of the alert email Email Content Text content supports predefined variables Variable names and corresponding instructions are as follows HOSTNAME Host name LOCALIP Local IP address SOURCEIP Attack source IP address DATETIME Occurred USERNAME User name WEBLOGIN effective DESTMAC Attack...

Page 30: ... IP Attack Configuration 2 WEBLOGIN Web Login Alert Notification Enter the password incorrectly five times to login MyPBX Web interface will be considered as an attack the system will limit the IP login within 10 minutes and notify the user Figure 5 19 Web Login Alert Setting ...

Page 31: ... an email or other key words in the phonebook Note It requires that the IP phone should support LDAP feature 1 LDAP Settings Figure 5 20 LDAP Server page Enable LDAP Enable LDAP to use LDAP on your IP phone Root Node A root node for this LDAP e g dc pbx dc com PBX Node A pbx node for this LDAP e g ou pbx dc pbx dc com User Name A user for this LDAP e g cn admin dc pbx dc com Password A password us...

Page 32: ... Appendix J 5 4 Storage Management 5 4 1 External Storage The External Storage feature is used to extend storage space Once configured the files voicemail call recording files created before the configured days will be moved to the Net Disk Note The shared folder must be based on Windows Operation System And if it s windows Vista 2008 7 please add Everyone into the shared account list ...

Page 33: ...5 22 Before external storage can be properly configured an SMB share folder accessible from MyPBX must be set up on a Windows based machine Once that has been set up please follow the steps below Figure 5 23 Step 1 Choose a window based computer that is always in service ...

Page 34: ...his to the name of the shared folder where backups will be stored Net Disk Share Username The user name used to log into the network share Leave this blank if it is not required Net Disk Share Password The password used to log into the network share Leave this blank if it is not required If the configuration is correct open the Windows share folder you will see the MyPBX backup files and folders h...

Page 35: ...ill prompt the password strength It is recommended that you use numbers upper case letters and lower case letters to increase the security When you log in MyPBX using admin account you can enable user and cdr account also you can change their passwords Figure 5 26 User account User account is disabled by default and its default password is password When enabling user account for the first time MyP...

Page 36: ...u log in MyPBX using admin account To change the password select cdr in User enter the old password and new password and click Save The system will then prompt you to re login using your new password After you enter the new password MyPBX will prompt the password strength It is recommended that you use numbers upper case letters and lower case letters to increase the security Figure 5 28 After ena...

Page 37: ... right time manually here 5 5 3 Firmware Update Upgrading of the firmware is possible through the Administrator web interface using a TFTP Server or an HTTP URL Enter your TFTP Server IP address and firmware file name then click start to update the firmware Notes 1 If Reset configuration to Factory Defaults is enabled the system will restore to factory default settings 2 When updating the firmware...

Page 38: ...t using this package The backup created on MyPBX is encrypted with file format bak Notes 1 Only configurations custom prompts will be backed up the voicemail and recording files are not included 2 When you have updated the firmware version it s not recommended to restore using old package Figure 5 31 Create a New Backup Users are able to create a new backup for All or for separate backup extension...

Page 39: ...an reset or reboot MyPBX SOHO via web directly in this page Figure 5 34 Reboot System Warning Rebooting the system will terminate all active calls Reset to Factory Defaults Warning A factory reset will erase all configuration data on the system Please do not turn off the system until the RUN light begins blinking Any power interruption during this time could cause damage to the system ...

Page 40: ...l control outbound call control audio settings and the others After configuration we can make or receive calls as expected 6 1 Extensions In this page we can configure the extensions details and provision the supported models automatically 6 1 1 FXS VoIP Extensions There are three types of extensions supported in MyPBX SOHO V5 SIP IAX and analog extension Figure 6 1 ...

Page 41: ...6 2 FXS There are two analog extensions in MyPBX SOHO V5 if S2 module is installed to modify the extension number please delete it first and then recreate it again 1 General Figure 6 3 Extension The numbered extension e g 1234 that will be associated with this particular User Phone Port ...

Page 42: ...ment Note Please ensure that all voicemail settings are properly configured on the System Settings Voicemail Settings page before using this feature 4 Flash Hook Flash Detection Sets the amount of time in milliseconds that must pass since the last hook flash event received by MyPBX before it will recognize a second event If a second event occurs in less time than defined by Hook Flash Detection th...

Page 43: ...nal calls Other Settings Figure 6 4 7 Other options Call Waiting Check this option if the extension should have Call Waiting capability If this option is checked the When busy follow me options will not be available DND Don t Disturb User Web Interface Check this option to allow the user to log in to the MyPBX User Web interface which can be used to access voicemail and extension recordings Users ...

Page 44: ...tensions your caller ID will be the number of your extension or dial out via outbound routes just like dialing from your extension Note If callback is enabled in the inbound route the mobility extension function of this inbound route will be disabled Enable Mobility Extension Enable this feature Mobility Extension Number When you dial the server with this number the mobile phone gets the permissio...

Page 45: ...lk with the monitored extension Barge spy you can hear the call and talk with them both Note for example if 500 want to monitor extension 501 we need to enable the allow being spied for 501 and choose the spy mode for extension 500 Then pick up 500 and dial feature codes 501 to start monitoring when 501 is in a call If 500 choose normal spy it should dial 90501 to start monitoring If 500 choose wh...

Page 46: ...col SIP IAX The extension sends and receives calls using the VoIP protocol IAX Extension The numbered extension e g 1234 that will be associated with this particular User Phone Password The password for this extension but it is not a fixed one When you add new extension a random and robust password will be generated like Gtwfup642 Name A character based name for this user e g Bob Jones ...

Page 47: ...e sent to email as an attachment Email Address Email address used to receive the voicemail or Fax Note Please ensure that the section SMTP Settings For Voicemail in the Voicemail Settings has been properly configured before using this feature 4 Group Pickup Group If this extension belongs to a pickup group any calls that ring this extension can be picked up by other extensions in the same pickup g...

Page 48: ...packets to IP phones Enable SRTP Enable extension for SRTP RTP Encryption Transport This will be the transport method used by the extension The options are UDP default or TCP or TLS DTMF Mode RFC2833 Info Inband Auto Remote Register Allow to register remote extensions If you enable Remote Register the extension password must include uppercase letters lowercase letters and digits This option is use...

Page 49: ... function of IP phone has higher priority than MyPBX s call waiting function DND Don Not Disturb When DND is enabled for an extension the extension will not be available User Web Interface Check this option to allow the user to login to the MyPBX User Web interface which can be used to check voicemail and extension recordings Users may log in MyPBX User Web interface by using their extension numbe...

Page 50: ...figuration Guide Permitted IP address Subnet mask The input format should be IP address Subnet mask E g 192 168 5 100 255 255 255 255 means only the device whose IP address is 192 168 5 100 is allowed to register this extension number E g 192 168 5 0 255 255 255 0 means only the device whose IP address is 192 168 5 XXX is allowed to register this extension number 10 Mobility Extension MyPBX allows...

Page 51: ...y you can hear the call and can talk with the monitored extension Barge spy you can hear the call and talk with them both Note for example if 500 want to monitor extension 501 we need to enable the allow being spied for 501 and choose the spy mode for extension 500 Then pick up 500 and dial feature codes 501 to start monitoring when 501 is in a call If 500 choose normal spy it should dial 90501 to...

Page 52: ...ning Yealink Grandstream Fanvil Snom IP phone MyPBX is not needed to be set as the only DHCP server any more Figure 6 8 6 1 2 1 General Settings for Yealink In this page you can configure the general settings before provisioning Yealink IP phones including the items like general preferences codecs remote phone book and firmware upgrade Note if firmware download server is enabled IP phone will upda...

Page 53: ...page you can configure the general settings before provisioning Aastra IP phones including the items like general preferences program keys configuration soft keys configuration Figure 6 10 6 1 2 3 Phone book You can add your contacts here and when you use phone provisioning the IP phone will download the phone book ...

Page 54: ...r Favorite Only works with snom phone Organization Input the organization of this contact Only works with snom phone Title Input the title of this contact Only works with snom phone Email Input the email of this contact Only works with snom phone Birthday Input the birthday of this contact Only works with snom phone First Name Input the first name of this contact Only works with snom phone Family ...

Page 55: ...fice Number Input the office number here Mobile Number Input the mobile number here Home Number Input the home number here Sub Number Add sub number of this contact Only works with snom phone Note Take some note of this contact Only works with snom phone Figure 6 12 ...

Page 56: ...nebook should be xml Note All the existing phonebooks of the IP phone will be replaced automatically if the phonebooks are configured in this way 6 1 2 4 Configure phone Let s take provisioning Yealink phone as an example There are two modes to create new phones create new phones in webpage and upload the IP Phone s configuration file Add new phone via webpage Click Add Phone and fill in the corre...

Page 57: ...l Waiting This call feature allows your phone to accept other incoming calls to an extension already in an active call Key as Send Configure a key as the send key you choose or disable this feature Auto redial Enable or disable the auto redial for the IP Phone Auto answer Enable or disable auto answer for the IP phone Phone book Enable or disable the feature of phone book for the IP phone Line You...

Page 58: ...ministrator s Guide www yeastar com Page 58 2 Codecs In this page we can set the codecs for the IP phone Figure 6 14 3 Memory key settings In this page we can configure the DSS keys of the IP phone one by one Figure 6 15 ...

Page 59: ...d IP phones and display them here We can click the MAC address of an IP phone and input the corresponding information in the pop up window like figure 6 13 Figure 6 17 6 1 2 5 Upload a file Click Upload a file and choose the configuration file of IP phone in the popup window Note the file format must be Yealink cfg file Snom htm file Grandstream xml file Please edit the configuration files in adva...

Page 60: ...unk Basic Rate Interface BRI 2B D 2B1D is an Integrated Services Digital Network ISDN configuration intended primarily for use in subscriber lines similar to those that have long been used for plain old telephone service The BRI configuration provides 2 bearer channels B channels at 64 kbit s each and 1 data channel D channel at 16 kbit s The B channels are used for voice or user data and the D ch...

Page 61: ...g rules etc E g BriTrunk1 Signaling Signaling method BRI CPE ISDN BRI in TE mode and Point to Point BRI CPE PTMP ISDN BRI in TE mode and Point to multi Point BRI NET ISDN BRI in NET mode and Point to Point BRI NET PTMP ISDN BRI in NET mode and Point to multi Point Switch Type National National ISDN type2 common in the US ni1 National ISDN type 1 dms100 Nortel DMS100 ...

Page 62: ...ling a box in Israel Our past experience also shows that this parameter may also cause issues on local switches in the UK and China PRI Indication Tells how Device should indicate Busy and Congestion to the switch user Accepted values are inband Device plays indication tones without answering not available on all PRI BRI subscription lines outofband Device disconnects with busy congestion informat...

Page 63: ...tional Prefix you have set here will be added before the CID So you can know this is a national call before you answer it Local Prefix When there are Local calls coming in via this BRI trunk the Local Prefix you have set here will be added before the CID So you can know this is a local call before you answer it Private Prefix When there are Private calls coming in via this BRI trunk the Private Pr...

Page 64: ...ed Extension The extension make call out via BRI Trunk will display the associated DOD Add DOD Add DOD for one associated extension Add Bulk DOD Figure 6 22 Add bulk DOD for bulk extensions in ascending sequence with the Begin DOD you fill in For example if the Associated Extensions are 100 101 102 103 104 105 with Begin DOD as 5500100 the corresponding DOD will be 5500100 5500101 5500102 5500103 ...

Page 65: ...he world s public circuit switched telephone networks Figure 6 23 Click edit to configure more details Figure 6 24 Trunk Name A unique label used to identify this trunk when listed in outbound rules incoming rules etc E g pstn5 Volume Setting Used to modify the volume level of this trunk Normally this setting does not need to be changed ...

Page 66: ... Without Busy Pattern specified MyPBX will accept any regular sound silence pattern that repeats Busy Count times as a busy signal If you specify Busy Pattern then MyPBX will further check the length of the tone and silence which will further reduce the chance of a false positive disconnection Frequency Detection Used for Frequency Detection Enable detecting the busy signal frequency or not Busy F...

Page 67: ...table in the UK v23_Japan suitable in Japan v23 Japan pure suitable in Japan DTMF suitable in Denmark Sweden and Holland Caller ID Detection For FXO trunks this option forces MyPBX to clarify Caller ID incoming calls 6 2 2 VoIP Trunk There are two types of VoIP trunk in MyPBX SIP and IAX in this page we can also configure the service provider trunk which doesn t need the use name and password for ...

Page 68: ...k Input the correct SIP information provided by VoIP provider Inaccurate information will prevent the trunk from registering You can delete multiple trunks at once as required Figure 6 27 Type SIP Identifies whether the trunk sends and receives calls using the VoIP protocol SIP Provider Name ...

Page 69: ...Registration in From Header of the SIP Invite package Keep this field blank if not needed Online number Define the online number that expected by Skype Connect and some other SIP service providers Leave this field blank if not needed Maximum Channels Control the maximum number of outbound channels simultaneous calls that can be used on this trunk Inbound calls are not counted against the maximum S...

Page 70: ... Trunk This method is given by the SIP trunk provider The options are UDP default or TCP or TLS Enable SRTP Define if SRTP is enabled for this trunk Qualify Send check alive packets to the SIP provider DTMF mode Set default mode for sending DTMF of this trunk Default setting rfc2833 DOD DOD Direct Outward Dialing means the caller ID displayed when dialing out Before configuring this please make su...

Page 71: ...e Begin DOD you fill in For example if the Associated Extensions are 100 101 102 103 104 105 with Begin DOD as 5500100 the corresponding DOD will be 5500100 5500101 5500102 5500103 5500104 and 5500105 2 Add IAX trunk Input the correct IAX information provided by VoIP provider Inaccurate information will prevent the trunk from registering ...

Page 72: ...outbound rules incoming rules etc E g yeastar2 Hostname IP Service provider s hostname or IP address 4569 is the standard port number used by IAX protocol Don t change this part if it is not required Username Username of IAX account Used for IAX trunk registration Password Password of IAX account Online number Define the online number that expected by Skype Connect and some other SIP service provi...

Page 73: ...ervice providers support this feature Contact your service provider for more information DOD DOD Direct Outward Dialing means the caller ID displayed when dialing out Before configuring this please make sure the provider supports this feature Associated Extension The extension making call out via IAX Trunk will display the associated DOD Add DOD Add DOD for one associated extension Add Bulk DOD Fi...

Page 74: ...s required And also you can delete multiple trunks at once by ticking the checkbox as required Figure 6 31 Below is service provider trunk peer to peer mode which authorize using IP address only If you have got a trunk with IP address only please choose this type Figure 6 32 Type SIP or IAX SIP Identifies whether the trunk sends and receives calls by using the VoIP ...

Page 75: ...ot counted against the maximum Leave blank to specify no maximum Codecs Define the codec for this SIP trunk and its priority Note codec can only display when editing it after creating the trunk Transport This will be the transport method used by the SIP Trunk This method is given by the SIP trunk provider The options are UDP default or TCP or TLS Qualify Send check alive packets to the SIP provide...

Page 76: ...e 6 33 Add bulk DOD for bulk extensions in ascending sequence with the Begin DOD you fill in For example if the Associated Extensions are 100 101 102 103 104 105 with Begin DOD as 5500100 the corresponding DOD will be 5500100 5500101 5500102 5500103 5500104 and 5500105 ...

Page 77: ...ber of outbound route is 32 2 If the dial patterns are the same in several routes MyPBX will choose the available routes from top to the last one 3 When you have created a new extension please edit the outbound route so that it can dial out too Figure 6 34 We can create outbound route or use the default route pstnout dial 9 numbers to dial out Also you can delete multiple outbound routes at once a...

Page 78: ... g Local or Long Distance Password The route password can be used to protect this route from being accessed without a password You can choose one of the passwords in the PIN list that you can click the Pin Settings to edit it in Pin Settings page T 38 Support Enable T38 fax in this outbound route Only for SIP Trunk ...

Page 79: ...causes the matching process to complete as soon as it can be determined that no other matches are possible Example 1 NXXXXXX will match any 7 digit phone number Example 2 1NXXNXXXXX will match a phone number starting with a 1 followed by a 3 digit area code and then 6 digit number Strip Allows the user to specify the number of digits that will be stripped from the front of the phone number before ...

Page 80: ...er The default is 99 Figure 6 37 2 Add new speed dial Source Number The speed dial number Destination Number The number you want to call E g the source number is 123 The destination number is 5503305 The prefix number is 99 You can use an extension with any type to dial 99123 then it will call the number 5503305 Note Don t forget to add the outbound dial prefix if you would like to dial the speed ...

Page 81: ... Auto Attendant MyPBX will play an IVR recording and route the caller to the requested destination for example Welcome to XX company for sales press 1 for technical support press 2 for operator press 0 etc The system will transfer the call to corresponding extension according to DTMF digits input by the user Figure 6 38 There is a default IVR here we can edit it directly or add IVR by yourself ...

Page 82: ...l this extension number to reach the IVR from internal extensions Name A name for the IVR Prompt The prompt recording that will be played when this IVR is reached Repeat Count The number of times that the selected IVR prompt will be played Key Timeout Wait for the user to enter a new extension for a specified number of seconds ...

Page 83: ...ct the call to a ringgroup Connect to IVR Connect the call to an IVR Connect to Conference Room Connect the call to a conference room Connect to DISA Connect the call to a DISA Connect to Queue Connect the call to a queue Connect to Faxes Connect the call to Faxes of extensions Dial by Name The callers can dial the name of an extension to connect to the corresponding extension Hung up Hang up the ...

Page 84: ...all traffic for multiple users and give callers a higher level of availability for incoming calls Multiple ring methods and voicemail are supported Note follow me feature in extension page will not take effect when it s ringing as an agent Figure 6 40 There is a default ringgroup you can edit it or create a new one Figure 6 41 ...

Page 85: ... to yes when the extension in the Ring group is called the associated mobility extension will ring simultaneously Beforehand the option of Rings Simultaneously should be ticked in the extension settings Seconds to ring each member 1 If the strategy is Ring All Simultaneously it means the number of seconds to ring this group before routing the call according to the Destination if No Answer settings...

Page 86: ...ere received to deliver top tier customer service Figure 6 42 Call queues allow calls to be sequenced to one or more agents Notes 1 Dial Queue number to log in or Queue number to log out the queue For example if the queue number is 680 then agent can dial 680 to log in or 680 to log out 2 Follow me feature in extension page will not take effect when it s ringing as an agent of queue ...

Page 87: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 87 Figure 6 43 Queue Name A name for the Queue ...

Page 88: ... until one answers LeastRecent Ring the Agent which was least recently called FewestCalls Ring the Agent with the fewest completed calls Random Ring a Random Agent RRmemory Round Robin with Memory Remembers where it left off in the last ring pass 1 Agents This selection shows all users Selecting a user here makes them an agent of the current queue 2 Caller Position Announcements Announce Position ...

Page 89: ...llers are forced out of a queue when no agents are logged in No Callers will remain in a queue with no agents Join Empty This option controls whether callers can join a call queue that has no agents There are two options Yes Callers can join a call queue without agents or only unavailable agents No Callers cannot join a queue when there are no agents in the queue The default option is No Agent Ann...

Page 90: ... hold meetings Conference agents can dial to access the settings options and the admin can kick the last user out and can lock the conference room Extension This is the number dialed to reach this Conference Room Admin Admin can kick a user out and can lock the conference room PIN Set a PIN that must be entered in order to access this conference room e g 1234 Figure 6 45 Add Edit Conference Room ...

Page 91: ...ce hours or outside office hours Figure 6 46 Inbound Route List There is a default inbound route for all the trunks and set IVR as the destination you can edit it or create a new one for your demands or you can delete multiple outbound routes at once as required When an incoming call arrives the system will first check fax detection then Holidays at last Business Days ...

Page 92: ...te Name A name for this inbound route E g pstnin DID Number Define the expected DID Number if this trunk passes DID on incoming calls Leave this field blank to match calls with any or no DID info You can also use pattern matching to match a range of numbers The following patterns may be used X Any Digit from 0 9 ...

Page 93: ...number must be only one or equal to the count of the DID number Caller ID Number Define the Caller ID Number to be matched on incoming calls Leave this field blank to match any or no DID info You can also use a pattern match e g 2 345 X to match a range of numbers The following patterns may be used X Any Digit from 0 9 Z Any Digit from 1 9 N Any Digit from 2 9 12345 9 Any digit in the brackets in ...

Page 94: ...x 3 Business Days Define where the calls will be routed during Business Days Office Hours Select one defined business days office hours Office Hours Destination Configure where to route the incoming calls during office hours End Calls Route the incoming calls to end calls the system will auto hang up the call Extension Route the incoming calls to a specific extension Voicemail Route the incoming c...

Page 95: ...te the incoming calls during non office hours 4 During Holidays Define where the calls will be routed during Holidays Holiday Select which defined Holiday to use When a time is defined in both Business Days and Holidays it will be treated as Holidays Destination Configure where to route the incoming calls during holidays 5 Fax Detection Configure if detecting faxes in this inbound route Note Pleas...

Page 96: ...he fax will be sent to the extension s voicemail as an attachment Note If you want to receive faxes with custom Email address the SMTP settings of Voicemail Settings should be configured successfully in advance If you want to receive faxes with E mail address configured in VoIP extension voicemail you should first make sure the tested email to your email address works fine ...

Page 97: ... also play it directly to confirm if it s a valid one you can also download it and save it as a backup Figure 6 48 1 Record new Prompt Figure 6 49 The administrator can record custom prompts by doing the following 1 Click Record New Custom Prompt 2 Input the desired file name on the popup window and choose an extension to call for recording such as 500 3 Click Record The selected extension will ri...

Page 98: ...cted prompt Note The file size must not be larger than 1 8 MB and the file must be WAV format GSM 6 10 8 kHz Mono 1 Kb s Alaw Ulaw 8 kHz Mono 1 Kb s PCM 8 kHz Mono 16 Kb s 6 5 2 Music on Hold Prompts In this page we can upload the music on hold prompts Figure 6 51 The administrator can upload on hold music as follows 1 Click Upload Music on Prompt 2 Click Browse to choose the desired audio file 3 ...

Page 99: ...ppropriate language you need MyPBX can support American English Australian English Chinese Dutch French Canadian French German Greek Hungarian Italian Polish Portuguese Brazilian Portuguese Russian Spanish Mexican Spanish Turkish Thai and Korean currently Notes 1 Auto detection is highly recommended But if you prefer to download via HTTP or TFTP server please contact the local dealer for the promp...

Page 100: ...odes voicemail settings 6 6 1 General Preferences In this page there are some general settings of MyPBX Figure 6 54 1 General Ring Timeout Number of seconds to ring a device before handling the call as per the extension s Follow Me settings The default value is 30s MAX call duration The absolute maximum amount of time permitted for a call A setting of 0 disables the timeout The default value is 60...

Page 101: ...ng calls are routed from ring group queue IVR the caller ID displays with the name of ring group queue IVR for example 5503302 ringgroup_default Note To display IVR s name please press the key instead of the extension number directly Attended Transfer Caller ID When transferring an incoming call using the attended transfer feature code or the transfer key of IP phone the Caller ID of transferee or...

Page 102: ...ompt Configure the prompt when the dialed phone number is busy Dial Failure Prompt Configure the prompt when dial failed due to conjunction or no available channel 2 Web Server HTTP Enable or disable HTTP session HTTP Bind Port Default port to use for HTTP session is 80 HTTPS Enable or disable HTTPS session HTTPS Bind Port Default port to use for HTTPS session is 443 Note please reboot the system ...

Page 103: ... General Enable Business Hours disable Business Hours 2 Others Enable Office Closed Timing By dialing 81 81 is the default code on an extension will force the office time closed for the device whatever the general setting is Enable Office Timing By dialing 82 82 is the default code on an extension will force the office time to take effect for the device whatever the general setting is Disable Offi...

Page 104: ...MyPBX which allow users to dial from extension side to realize the exact feature Figure 6 56 1 General One Touch Record A user may initiate or stop call recording by dialing 1during a call 1 is the default setting Extension for Checking Voicemail Users can check their Voicemail by dialing 2 on their phone 2 is the default setting Voicemail for Extension Users can leave a voicemail to other extensi...

Page 105: ...efault the setting Extension Pickup Users may pick up a specific extension s incoming call by dialing 04 extension number on their phone 04 is the default setting Intercom Define the feature code that is used to dial an extension in intercom mode For instance setting this value to 5 would allow you to initiate an intercom call with extension 501 by dialing 5501 Normal Spy In this mode you can only...

Page 106: ...fault setting Note When reset to defaults The call forwarding settings will be configured as follows Always forward Disabled Busy forward to Voicemail Enabled No answer forward to Voicemail Enabled Do not disturb Disabled Enable Forward All Calls Users may enable always forward by calling 71 on their phone 71 is the default setting Disable Forward All Calls Users may disable always forward by call...

Page 107: ... dialing 74501 all calls will be forwarded to extension 501 Forward to Voicemail Users may forward the call to Voicemail by calling 074 on their phone 074 is the default setting Enable Do Not Disturb Users may enable do not disturb by calling 75 on their phone 75 is the default setting Disable Do Not Disturb Users may disable do not disturb by calling 075 on their phone 075 is the default setting ...

Page 108: ... go to the destination IVR you set by dialing 0 b Greeting Settings Busy Prompt Greeting played when the extension called is busy Skip greeting Do not play a greeting Play busy greeting play the extension busy greeting Unavailable Prompt Greeting played when the extension called is Unavailable Skip greeting Do not play a greeting Play Unavailable greeting play the extension Unavailable greeting Le...

Page 109: ...il Note If you want to send voicemail messages as email attachments please configure this section Figure 6 58 E mail Address The E mail Address that MyPBX will use to send voicemail Password The password for the email address used above SMTP Server The IP address or hostname of an SMTP server that the MyPBX will connect to in order to send voicemail messages via email e g mail yourcompany com Port...

Page 110: ...tor s Guide www yeastar com Page 110 Settings button to check whether the setup is OK 1 If the test is successful you can use the email safely 2 If test failed please check if the above information is correct or network is proper ...

Page 111: ...gistrations The default is 5060 TLS Port Port used for SIP registrations The default is 5061 TLS Verify Server When using MyPBX as a TLS client whether or not to verify server s certificate It is No by default TLS Verify Client When using MyPBX as a TLS server whether or not to verify client s certificate It is No by default TLS Ignore Common Name Set this parameter as No then common name must be ...

Page 112: ... is 60 seconds Default Incoming Outgoing Registration Time Default Incoming Outgoing Registration Time Default duration in seconds of incoming outgoing registration Register Attempts The number of SIP REGISTER messages to send to a SIP Registrar before giving up Default is 0 no limit Register Timeout Number of seconds to wait for a response from a SIP Registrar before considering the register has ...

Page 113: ...ATs is a protocol for assisting devices behind a NAT firewall or router with their packet routing STUN Address The STUN server allows clients to find out their public address the type of NAT they are behind and the Internet side port associated by the NAT with a particular local port This information is used to set up UDP communication between the client and the VoIP provider and so establish a ca...

Page 114: ...addresses are local networks 10 0 0 0 255 0 0 0 Also RFC1918 172 16 0 0 12 Another RFC1918 with CIDR notation 169 254 0 0 255 255 0 0 Zero conf local network Please refer to RFC1918 for more information NAT Mode Global NAT configuration for the system the options for this setting are as follows Yes Use NAT Ignore address information in the SIP SDP headers and reply to the sender s IP address port ...

Page 115: ... and transmitting of a VoIP call GSM is supported by many VoIP phones SPEEX Speex is an Open Source Free Software patent free audio compression format designed for speech The Speex Project aims to lower the barrier of entry for voice applications by providing a free alternative to expensive proprietary speech codecs Moreover Speex is well adapted to Internet applications and provides useful featur...

Page 116: ...edia connection will not be delayed or dropped due interference from other lower priority traffic When the network capacity is insufficient QoS could provide priority to users by setting the value 5 T 38 Figure 6 63 Re invite SDP Not Add T 38 Attributes If set to Yes SDP in re invite packet will not add T 38 attributes Error Correction Re invite SDP T38FaxUdpEc T38 Max BitRate Set T38 Max BitRate ...

Page 117: ...er to allow anonymous registration extension or not Default no This option is used to avoid some anonymous calls by hackers For more details about the system security configuration please refer to APPENDIX B MyPBX Security Configuration Guide Pedantic Enable pedantic parameter Default no Alwaysauthreject If enabled when MyPBX rejects Register or Invite packets MyPBX always respond the packets usin...

Page 118: ...strations Default is 4569 Bandwidth Low medium high with this option you can control which codec to be used Min Registration Time Minimum duration in seconds of an IAX2 registration The default is 60 seconds Max Registration Time Maximum duration in seconds of an IAX2 registration The default is 1200 seconds 2 Codecs A codec is a compression or decompression algorithm used in the transmission of v...

Page 119: ... entry for voice applications by providing a free alternative to expensive proprietary speech codecs Moreover Speex is well adapted to Internet applications and provides useful features that are not present in most other codecs G 726 A PSTN codec used worldwide that provides good voice quality and consumes 32kbit s in each direction receiving and transmitting of a VoIP call G 726 is supported by s...

Page 120: ...aring the ring A can hang up the call or wait for MyPBX to cut off the call then MyPBX will call A with this number When A picks up the call A can dial the number he wants to call MyPBX will call the number with its outbound route Notes 1 If you d like to use callback feature please make sure it s enabled on the inbound route setting panel 2 No callback rules needed to be set if the trunk supports...

Page 121: ...create callback rules when the system should strip or add digits Figure 6 71 Trunk Name Choose the trunk with callback rules Strip digits from front Define how many digits will be stripped from the call in number before the callback is placed For example when you call from number 123456789 into MyPBX the caller ID is 0123456789 but you can only call 123456789 successfully from MyPBX trunk You shou...

Page 122: ...at the caller dialed Figure 6 72 Note If DID is not configured here all the calls via this trunk will show the DNIS instead of the original caller ID 6 7 6 DISA DISA Direct Inward System Access allows someone calling in from outside the telephone switch PBX to obtain an internal system dial tone and make calls as if they were using one of the extensions attached to the telephone switch To use DISA...

Page 123: ...em will wait before hanging up the call if the user has dialed an incomplete or invalid number The default is 10 seconds Digit Timeout The maximum amount of time permitted between each digit when the user is dialing an extension number The default is 5 seconds 2 Member Outbound Routes Used to set the outbound routes that can be accessed from this DISA 6 7 5 PIN User Settings PIN User is used to ma...

Page 124: ...ure Prompt the caller when an invalid PIN is entered Figure 6 75 2 PIN User MyPBX can store a number of PIN Users PIN Users may be used to keep track of calls in relation to particular activities or clients They can also be used to keep track of calls by particular users or sets of users PINs entered are checked against those stored by the system If an invalid PIN is entered the PIN is requested a...

Page 125: ...before making any external call Name A character based name for this PIN list e g YeastarPIN PIN The password for this PIN list PIN Settings Click to add delete or edit PIN list Member Outbound Route PIN User can use those outbound route to make call out 6 7 8 PIN Settings In this page users can manage all the passwords of outbound routes PIN User and DISA Figure 6 76 Name A character based name f...

Page 126: ...but instead answer immediately into speakerphone mode Please note that this section is for configuring paging groups If you would like to configure Intercom settings please open the Other Settings Feature Codes screen This feature is supported by the following SIP phones Yealink s T28 T26 T22 T20 T10T T9CM Other SIP devices may also work with this feature but are not officially supported Note A pa...

Page 127: ...in the group can talk with each other without pressing 6 7 10 Certificates MyPBX can support TLS extension Before you register TLS extension on IP phone you should upload certificates first Figure 6 79 Trusted Certificate This certificate is a CA certificate When selecting TLS Verify Client as Yes you should upload a CA The relevant IP phone should also have this certificate PBX Certificate This c...

Page 128: ...and system log for debugging 7 1 Call Logs The call Log captures all call details including call time caller number callee number call type call duration etc An administrator can search and filter call data by call date caller callee trunk duration billing duration status communication type and Pin User Figure 7 1 7 2 System Logs Figure 7 2 ...

Page 129: ...history of web operations up to 2 log files Enable Debug Log Save debug information up to 2 log files Packets Capture Tool This feature is used by technician to capture packets Packet capture tool Wireshark is integrated in MyPBX Users also could specify the destination IP address and port to get the packets IP Specify the destination IP address to get the packets Port Specify the destination Port...

Page 130: ... outbound call we need to add a trunk first There are 3 types of VoIP Trunk VoIP Trunk Connected to remote VoIP service server You should get an IP address with user name password from the provider Service Provider Connected to service provider server You will get only IP address for authorization Analog Trunk FXO ports of MyPBX connected to a local PSTN ...

Page 131: ... other analog devices to your PBX FXO Foreign exchange Office is an interface that connects to a phone line to supply your PBX with access to a public telephone network FXO interfaces use FXS signaling FXO interfaces allow you to connect your PBX to real analog phone lines Sample Routing via VoIP Trunk Let s configure all inside extensions to dial 0 through the VoIP Trunk 1 Add VoIP service provid...

Page 132: ...s Guide www yeastar com Page 132 Figure 9 2 2 Add Outbound Routes As we can see from the Outbound Route of VOIP_OUT all phone numbers starting with 0 will have their first digit stripped off digit 0 and will be sent to the SIP Trunk ...

Page 133: ...ministrator s Guide www yeastar com Page 133 Figure 9 3 Now that we have added two outbound dialing rules any call starting with 9 will be routed to the PSTN and any number starting with 0 will be routed to the SIP Trunk ...

Page 134: ... call to route to the IVR In the IVR itself let s configure digit 0 to route the call to extension 300 and digit 1 to route the call to ringgroup 1 Add IVR To add a new IVR go to IVR Create New IVR Figure 9 4 2 Add Inbound Routes As we can see from the Inbound Route of VOIP_IN all incoming calls from VoIP trunk will be sent to the IVR ...

Page 135: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 135 Figure 9 5 ...

Page 136: ...gure page through this IP d Put the SIP extensions info on the T28 IP phones Display Name 501 User Name 501 Register Name 501 Password 501 SIP Server 192 168 5 150 Use the same method register another T28 to other extension Q2 How do I reset MyPBX back to the factory default settings A2 To perform a reset please follow the steps below Step 1 Press down the Reset button on the back of the unit for ...

Page 137: ...ased machine Once that has been set up please follow the steps below Step 1 Add a new folder rename it and set this new folder s share Properties according to Figure B 1 Figure B 1 Set up share Properties Step 2 Enter the new folder and create a new text file then rename this file to status txt This step is very important DO NOT forget to create the status txt file Step 3 Configure External storag...

Page 138: ...t Disk Share Username The user name used to log into the network share Leave this blank if it is not required Net Disk Share Password The password used to log into the network share Leave this blank if it is not required Open your Windows share folder to see if the MyPBX backup files and folders has been created If the contents of the backup folder look similar to Figure B 3 then you have successf...

Page 139: ...lt SIP port and port 10001 10200 default RTP port range as UDP ports Next log in MyPBX Web GUI go to PBX Advanced Settings SIP Settings NAT External IP Address your router s public IP address External Host your router s domain External Refresh Interval 20 seconds Local Network Identification 192 168 5 0 255 255 255 0 change this according to your network configuration NAT mode Yes Allow RTP Reinvi...

Page 140: ...ting 2 If MyPBX has a public IP i e is connected directly to your Internet service provider the network settings should be configured according to Figure C 3 Figure C 3 Now MyPBX has been configured as a public IP so there is no need to configure NAT again just leave all settings in NAT blank ...

Page 141: ...e 141 APPENDIX D How to Use Auto Provision Step1 Disable DHCP Server on your local network E g Disable DHCP Server on Linksys Router Figure D 1 Step2 Enable DHCP Server on MyPBX Login MyPBX web interface System Network Preference DHCP Server Enable DHCP Server ...

Page 142: ... 1 Login MyPBX web interface PBX Extensions Phone Provisioning Add Phone Figure D 3 2 Fill in the phone detail message on the pop up windows Input IP Phone s MAC address configure Name Call waiting Line Extension Label Line active for the phone And also you can configure other features on the phone like codecs memory keys etc ...

Page 143: ...n the power and connect the network cable to IP Phone Remark The factory default setting of DHCP for IP Phone is enabled so you can skip this step to step 5 If the DHCP is disabled please follow the steps below to enable it e g Yealink s IP Phone 1 Log in IP phone s web page 2 Enable DHCP ...

Page 144: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 144 Figure D 5 Step5 Finish ...

Page 145: ...ind the Distinctive Ring Tone section For each custom ring tone enter the Internal Ringer Text can be digits or text to trigger the ring tone For example you may enter Family E g Yealink s IP phone Figure E 1 Step2 Configure the Distinctive Ringtone on MyPBX Log in MyPBX web interface PBX Inbound Call Control Inbound Routes Edit Inbound Route fill in the Internal Ringer Text on Distinctive Rington...

Page 146: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 146 Figure E 2 Step3 Finish ...

Page 147: ...f telephone numbers to this line or group of lines and forwards all calls to such numbers via the trunk MyPBX support DID you can configure DID in inbound route Related settings DID Number Extension Destination Figure F 1 DID Number Define the expected DID Number if this trunk passes DID on incoming calls Leave this field blank to match calls with any or no DID info Only service provider E1 trunks...

Page 148: ... number this field only valid when use E1 trunk for this inbound router You can only input number and in this field and the format can be xxx or xxx xxx The count of the number must be only one or equal the count of the DID number Destination If you don t set the extension you can set the destination of the call here Example 1 Step1 You set the DID number 5503XXX in this example Step2 You choose t...

Page 149: ...his example Step2 You set the Extension 6001 6099 in this example The configuration of this example means when the incoming call with DID number 6001 to 6099 will go to the destination 6001 to 6099 number 6001 to extension 6001 number 6002 to extension 6002 The destination you set below will be disabled if you set the Extension ...

Page 150: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 150 Figure F 3 ...

Page 151: ... pressing the BLF key on the IP Phone Follow the steps to do the configuration with your Yealink phone 1 We want to choose pstn1 or pstn2 to call out Figure G 1 2 Configure the IP Phone Figure G 2 Test When you press DSS Key 1 2 the phone will connect to pstn1 pstn2 line If pstn1 pstn2 is not busy you will hear the dial tone You can dial the number you want and use this line to call out then ...

Page 152: ...t the attack fraud and the system failure or calls loss Notes 1 In this guide the configuration options marked with only exist in X 18 XX XX and above versions 2 We recommend upgrading the firmware to the latest edition for security purpose 3 Don t map any port to MyPBX in router if not needed 4 We recommend limiting the credit of VoIP trunks for international calls Security Center Security center...

Page 153: ...hone provisioning it s enabled by default you can disable it after all phones are well configured Figure H 0 2 3 Firewall In this page the basic information of firewall rules are displayed We recommend configuring it step by step following part 2 of this manual Figure H 0 3 1 Ports and password enhancement Ports and password are most important for security we recommend changing the default ones to...

Page 154: ...nd port PBX Basic Settings General Preferences HTTP Bind Port Figure H 1 1 We can change it to another one like 8080 for example 1 1 2 Change the default password System System Preferences Change Password Figure H 1 2 A strong password needs to be configured here for all accounts Especially account admin and user ...

Page 155: ...rity is very important for users 1 2 1 Change the default SIP Port PBX Basic settings SIP Settings General UDP Port Figure H 1 3 We recommend changing this to another available port for example 5080 1 2 2 Change the default password The password of the extensions is pincode extension number A password with upper and lower letters and numbers is recommended For example AjK5Up1G ...

Page 156: ...ons You can find this setting in PBX Extensions FXS VoIP Extensions VoIP Extensions General Password When it s configured only the permitted IP can register this extension All the other registry requests will be denied The format is IP address Subnet mask e g 192 168 5 136 255 255 255 255 In this way only 192 168 5 136 can register this extension 6010 Figure H 1 5 ...

Page 157: ...rity TLS and its predecessor Secure Sockets Layer SSL are cryptographic protocols that provide communication security over the Internet They use asymmetric cryptography for authentication of key exchange symmetric encryption for confidentiality and message authentication codes for message integrity Several versions of the protocols are in widespread use in applications such as web browsing electro...

Page 158: ...ce before using it 2 Firewall configuration Note Please back up the configurations on Backup and Restore page before you go ahead In the case that you lock the device you can reset to factory default and restore the previous configurations The example rules below work with MyPBX firmware version 2 15 xx xx or higher versions The basic logic to configure firewall is Allow all trusted IP addresses a...

Page 159: ...is 192 168 5 1 192 168 5 254 the configuration could be as below Name LocalNetwork Protocol BOTH Port 1 65535 IP 192 168 5 0 255 255 255 0 the format must be IP net mask Action Accept Figure H 2 2 Step3 Add common rules to allow remote administrators extensions or devices For example the public IP is 110 30 25 152 we can allow all ports for this trusted IP Name Remote Protocol BOTH Port 1 65535 IP...

Page 160: ... recommend getting public static IP for security purpose Step4 Add common rules to accept the static public IP range of VoIP provider The ports used to contact the SIP provider is 5060 and 10000 12000 by default if you have changed this port range you can input it here by yourself For example the IP address is 110 111 132 6 the configurations should be two parts one is for 5060 and the second is f...

Page 161: ... 2 4 Allow RTP port range Name RTP Protocol UDP Port 10000 12000 IP 110 111 132 6 255 255 255 255 Action Accept Figure H 2 5 Note If the media server of SIP provider is dynamic and we cannot collect the IP range We can allow the RTP range for the whole IP addresss like this ...

Page 162: ...ar com Page 162 Name RTP_ALL Protocol UDP Port 10000 12000 IP 0 0 0 0 0 0 0 0 Action Accept Figure H 2 6 In this case MyPBX can get rid of one way volume issue Step5 Block the web connection of the other IP address that are not added into accept list ...

Page 163: ...rver in MyPBX s firewall and the IP address should be a static one or it belongs to a range If it s Dyndns there is no need to configure this rule but the IP blacklist should be kept and Drop All should not be ticked For example the SMTP server is 110 30 1 123 Name Allow_SMTP Protocol BOTH Port 1 65535 IP 110 30 1 123 255 255 255 255 Action Accept Figure H 2 7 As for the rule of NTP and POP server...

Page 164: ...les are created by MyPBX by default 1 Add two auto blacklist rules for port 5060 Rule No 1 Port 5060 Protocol UDP IP Packets 120 Time Interval 60 seconds Figure H 2 8 Rule No 2 Port 5060 Protocol UDP IP Packets 40 Time Interval 2 seconds Figure H 2 9 2 Add an auto blacklist rule for Port 8022 Rule No 3 Port 8022 Protocol TCP IP Packets 5 Time Interval 60 seconds ...

Page 165: ...ocal network access or the server might not be accessed Figure H 2 11 Notes 1 After enabling Drop All the rules of auto defense and IP blacklist will not take effect It means except the IPs and packets which are defined in the accept rules the other connection or packets will be dropped 2 If Drop All is not enabled please don t remove the IP blacklist rules in case the system security hole exists ...

Page 166: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 166 Figure H 2 12 Figure H 2 13 3 Service security 3 1 Disable Guest Call 3 2 Disable Guest calls ...

Page 167: ...fault please keep it to No for general use 3 2 SSH access enhancement 3 2 1 Disable SSH Select LAN Settings Enable SSH If external debugging isn t required please select No Figure H 3 2 Note SSH access is disabled by default please keep it to No if not needed 3 2 2 Change the default password for SSH We can use the Linux command passwd to change the root password of MyPBX ...

Page 168: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 168 1 Log in via putty exe Figure H 3 3 2 The default username is root and the default password is ys123456 Figure H 3 4 ...

Page 169: ... and issue commands or read events over a TCP IP stream Integrators will find this particularly useful when trying to track the state of a telephony client inside Asterisk and directing that client based on custom and possibly dynamic rules For more information you can refer to this page http www voip info org wiki view Asterisk manager API Note this feature is disabled by default there is no need...

Page 170: ...page directly Click System System Preferences AMI Settings For example the AMI account I want is User name Developer Password Developer The only IP address that s allowed to log in is 192 168 1 71 We can configure it like this Figure H 3 7 Save it and apply the changes To confirm more details please try command cat etc asterisk manager conf ...

Page 171: ... this access to protect the configuration files of MyPBX Click System Security Center Service to disable it directly Figure H 3 9 3 5 Database Grant MyPBX has integrated MySQL since x 18 0 xx which provides convenience for users to manage the CDR and the Recording log To protect the database access we need to set up user name and password separately before login There is no account configured by d...

Page 172: ...tar com Page 172 using third party software you need to set up this first For example username Harry password Harry123 Figure H 3 10 Save it and apply the changes Figure H 3 11 When logging in using other software we can check the CDR Figure H 3 12 ...

Page 173: ...l will add the IP to auto IP Blacklist and notify the user if it match the protection rule Example Configure to notify extension 500 outbound number 5503301 and E mail alert yeastar com configuration could be as below Phone Notification Settings Phone Notification Yes Number 500 5503301 Attempts 1 Interval 60s Prompt default Note If there s an outbound number to notify the number should fit the di...

Page 174: ...he IP login within 10 minutes and notify the user Example Configure to notify extension 500 outbound number 5503301 and E mail alert yeastar com configuration could be as below Phone Notification Settings Phone Notification Yes Number 500 5503301 Attempts 1 Interval 60s Prompt default Note If there s an outbound number to notify the number should fit the dial pattern of the outbound route E mail N...

Page 175: ... call credit at provider side We can ask VoIP PSTN ISDN provider for help to limit the credit of international calls in advance then the hacker cannot dial international calls Each provider has its own policy You can also ask provider to disable international call if not needed 4 2 Set password for international call MyPBX allows you to configure password for outbound routes ...

Page 176: ...is 5503333 Dial pattern 00 Don t miss the dot here Password 5503333 Choose the allowed extension and the trunk to the right side like this Figure H 4 1 Save and apply the changes when 300 and 301 pick up headsets and dial a international number MyPBX will ask for the password if passed the call will be dialed out If not the call will be dropped ...

Page 177: ... Create an invalid SIP trunk in PBX VoIP trunk Service Provider The IP address can be an invalid one like 127 0 0 1 Figure H 4 2 Save it and apply the changes The status of this trunk is unreachable of course That s what we want Step2 Create an oubount route for all extensions and this trunk to route international calls ClicK PBX Outbound Call Control Outbound Route create a new one Name NoInterna...

Page 178: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 178 Figure H 4 3 Save it and apply the changes Then click the arrow at the left side to set it to the top Figure H 4 4 ...

Page 179: ...s working as a SIP server IP phones register to MyPBX as extensions via TLS 1 Enable TLS in MyPBX s web interface Click PBX SIP settings General to get the settings about TLS which is disabled by default If you are using MyPBX SOHO please find it in Internal Settings SIP Settings page Figure I 1 TLS Port Port use for Sip registrations Default is 5061 TLS Verify Server When using MyPBX as a TLS cli...

Page 180: ...security reason we recommend enabling TLS Verify Client and disabling TLS Ignore Common Name in which case MyPBX will verify IP phone s Certificate the common name inside CA should be the same as its IP or domain name 2 TLS Client Method it s the TLS method of IP phone you can contact the manufacturer of the IP phone to get that 3 You need to reboot MyPBX to take effect after enabling TLS 2 Prepar...

Page 181: ... download link www yeastar com download tools TLS_CA_Tool rar You can find the files inside the package like these Figure I 3 Ca bat Make the CA crt for IP phone and MyPBX Client bat make the client pem it s the IP phone s server certificate Server bat make the asterisk pem it s the MyPBX s server certificate Here are the steps to make all the certificates Step1 Prepare MyPBX s CA CA crt Double cl...

Page 182: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 182 Figure I 4 Just follow the guide to input the information of MyPBX step by step In this example MyPBX s IP address is 192 168 4 142 ...

Page 183: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 183 Figure I 5 ...

Page 184: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 184 Figure I 6 This ca crt is the same as the one in folder TLS_CA_Tool ca trusted Figure I 7 ...

Page 185: ...or s Guide www yeastar com Page 185 MyPBX s CA CA crt is generated successfully Step2 Prepare asterisk pem MyPBX s server certificate We need the CA crt and CA key to make the server certificate Double click server bat Figure I 8 ...

Page 186: ...X SOHO V4 V5 Administrator s Guide www yeastar com Page 186 Follow the guide to input information step by step and make sure the information you have input matches the one you have input in Step1 Figure I 9 ...

Page 187: ...rmation then input y to continue When done you can find the asterisk pem as the following picture shows Figure I 10 asterisk pem the MyPBX s server certificate is generated successfully Note We can copy the asterisk pem ca crt to another folder before making the IP phone s certificate ...

Page 188: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 188 Figure I 11 Step3 Prepare the IP phone s certificate ca crt Double click ca bat input the information of IP phone step by step ...

Page 189: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 189 Figure I 12 In this example the IP phone s IP address is 192 168 4 71 Figure I 13 ...

Page 190: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 190 When done we can find the ca crt in this folder Figure I 14 The ca crt in folder TLS_CA_Tool ca trusted is the same as the above one ...

Page 191: ...e got your own CA for IP phone you can rename it to CA crt and copy it to folder TLS_CA_Tool ca trusted before making the client pem Step4 Prepare client pem the IP phone s server certificate Double click client bat Figure I 16 Input the IP phone s information step by step in this script make sure the content is the same as Step3 ...

Page 192: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 192 Figure I 17 ...

Page 193: ...Guide www yeastar com Page 193 Confirm all the information we input before clicking y to finish this guide Figure I 18 The IP phone s server certificate is ready Note We can copy the client pem ca crt to another folder before uploading ...

Page 194: ...94 Figure I 19 All the certificates are prepared 3 Upload certificates 3 1 Upload IP phone s certificates In this example IP phone s model is Yealink T28 Step1 Upload IP phone s server certificate client pem Click Security Server Certificates to upload client pem ...

Page 195: ...t by itself when uploaded successfully to take effect Figure I 21 When IP phone boots up again we can check the certificate status Figure I 22 Step2 Upload the trusted certificate The trusted certificate is the ca crt of MyPBX It will be sent to MyPBX during the registry process for authorization Click Security Trusted Certificates upload MyPBX s ca crt ...

Page 196: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 196 Figure I 23 Figure I 24 When done we can check the content of CA crt like the picture shown below ...

Page 197: ...ploaded 3 2 Upload MyPBX s certificates In this example the model of MyPBX is MyPBX U200 firmware version 15 18 0 22 Step1 Upload MyPBX s server certificate asterisk pem Click PBX Advanced Settings Certificates then click Upload Certificates choose PBX Certificates in Type windows then upload the asterisk pem Figure I 26 ...

Page 198: ... to take effect Figure I 27 Click Reboot Now to reboot MypBX When done we can move to Step 2 Figure I 28 Step2 Upload the trusted certificate The trusted certificate in MyPBX should be the ca crt of IP phone Click Upload Certificates and choose Trusted Certificates in Type windows then upload the IP phone s ca crt ...

Page 199: ... I 30 The certificates in MyPBX side are well uploaded 4 Register IP phone to MyPBX via TLS Before registering IP phone to MyPBX we need to create a SIP extension in MyPBX side in advance or edit the existing one In this example extension number is 303 We need to set TLS protocol in this page click save and Apply Changes on Web ...

Page 200: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 200 Figure I 31 Open IP phone s configuration page input the registry information of extension 303 ...

Page 201: ...tus in Extension Status page of MyPBX Figure I 33 If you have any problems about extension s registry please run a packet trace in Reports System Logs Packet Capture Tool input IP phone s IP address choose the eth port then click Start You can register the IP phone again then click Stop and download the package to analyze via Wireshark You can also send it to us for analyzing ...

Page 202: ...MyPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 202 Figure I 34 ...

Page 203: ...star com Page 203 I 2 How to register SIP trunk to VoIP provider via TLS If you have got the SIP trunk from provider that is using TLS we can configure it in MyPBX and choose TLS within the trunk here are two examples for you VoIP trunk Figure I 35 ...

Page 204: ...ww yeastar com Page 204 Service provider trunk P P Figure I 36 If you have got problem when registering to provider via TLS you can also run a packet trace in System Log page using Packet Capture Tool then send it to provider or us to analyze ...

Page 205: ...n MyPBX so that you can search a key word from your IP phone Here we take Yealink T 28 IP phone as an example 1 Configuration on MyPBX Tick the option of Enable LDAP and use default configuration in the other fields Default configuration as below Root Node dc pbx dc com PBX Node ou pbx dc pbx dc com User Name cn admin dc pbx dc com Password fill in as required Then you can add contact as required ...

Page 206: ...ame cn admin dc yeastar dc com Password the password you have set on MyPBX Max Hits 50 LDAP Name Attributes cn sn displayName LDAP Number Attributes telephoneNumber homePhone mobile mail departmentNumber LDAP Display Name cn Protocol Version 3 Search Delay ms 0 2000 0 LDAP Lookup for Incoming Call Enabled LDAP Sorting Results Enabled LDAP Lookup for PreDial Dial Enabled Click the confirm button an...

Page 207: ...yPBX SOHO V4 V5 Administrator s Guide www yeastar com Page 207 Figure K 3 If you enable the LDAP Lookup for PreDial Dial you can use LDAP feature either in PreDial Dial page or by pressing DSS Key Finish ...

Reviews:

No comments

Related manuals for MyPBX SOHO V4

Canon IMAGEPRESS C7010VPS Brochure & Specs preview
IMAGEPRESS C7010VPS
Brand: Canon Pages: 4
Panasonic SF4C Series Quick Instruction Manual preview
SF4C Series
Brand: Panasonic Pages: 116
Panasonic Toughbook CF-T7BWATAAM Supplementary Manual preview
Toughbook CF-T7BWATAAM
Brand: Panasonic Pages: 12
QUIETON Q1 Quick Start Manual preview
Q1
Brand: QUIETON Pages: 24
Quest Engineering Q1 Operator'S & Installation Manual preview
Q1
Brand: Quest Engineering Pages: 24
Nauticam 21230 Instruction Manual preview
21230
Brand: Nauticam Pages: 2
Aastra Clearspan 6731i Reference Manual preview
Clearspan 6731i
Brand: Aastra Pages: 3
Aastra 9112I Quick Start Manual preview
9112I
Brand: Aastra Pages: 18
Aastra 6865i Quick Start Manual preview
6865i
Brand: Aastra Pages: 8
Aastra DT4X3 User Guid preview
DT4X3
Brand: Aastra Pages: 97
Aastra 55I Getting To Know Your preview
55I
Brand: Aastra Pages: 7
Aastra openphone 28 User Manual preview
openphone 28
Brand: Aastra Pages: 104
Aastra MBU 400 Administrator'S Manual preview
MBU 400
Brand: Aastra Pages: 74
Aastra Dialog 4224 User Manual preview
Dialog 4224
Brand: Aastra Pages: 100
Bang & Olufsen BeoCom 1401 Manual preview
BeoCom 1401
Brand: Bang & Olufsen Pages: 2
IDS NXT Operation preview
NXT
Brand: IDS Pages: 22
Tao Motor TBR7 Installation Manual preview
TBR7
Brand: Tao Motor Pages: 3
Uniden 1380 User Manual preview
1380
Brand: Uniden Pages: 44

Brands by name

Popular brands

Load more brands