Updated Security Features in xNode 2.4.7 software

Prev Next

!!! WARNING !!!

Please read the following before installing updates 2.4.7 or 2.4.22. There are new security features that could affect your update. The link to download the update is farther down in this document.

!!! WARNING !!!

Scope

This document applies ONLY to the original Telos Alliance xNodes and NOT to the newer xNode2 models.

Version 2.4.7 or newer of the xNode software requires some preparatory steps before installation. These steps only apply when updating to version 2.4.7 or higher of the xNode software. If you are installing any version prior to this one, these instructions do not apply.

Description

Version 2.4.7 of the xNode software includes several new security features that our customers have requested. Specifically, closing the SIP connection port (port 5060) and closing the main telnet port (port 23).

Closing the SIP port will affect your installation if you use SIP for unicast connections.

If you proceed with your install without un-configuring your SIP connections, you will be required to Factory Reset to restore fully functionality.

Check for and temporarily remove AES67 SIP Connections

If you have NO SIP connections an your Destinations page and you are sure you are not using AES67 SIP, you can proceed to the bottom of this page and download the update.

Before installing this update,

  1. Navigate to the Destinations page on each xNode

  2. Look for any Destinations that are using SIP Unicast connections

    If you are using AES67 SIP, your Destination will be formatted like this. sip:8@192.168.2.114

  3. Make a note of and remove any SIP connections from your Destinations configuration page.

  4. Click Apply.

Update your xNode software

You may now update your xNode software according to the previous instructions. Click here to access the 2.4.22 update instructions.

Enable SIP Discovery

You must enable SIP Discovery before restoring your Destinations

  1. On your xNode WebUI, navigate to the Synchronization and QoS link

  2. At that bottom of that page, set the Enable SIP Disclosure setting to Enabled.

    The default is DISABLED

  3. Click Apply

Return to the Destinations page.

You may now return to the Destinations page and re-apply the SIP settings that we removed in the Previous Step.