PBX Service Security

The PBX provides various services that use different protocol. To secure your PBX, you need to configure and manage the services on the PBX.

PBX Service

Go to Settings > System > Security > Service to check all the service status and port.

Note: We suggest you to change the default port.
Table 1. Description of PBX Services
Service Default Port Description
HTTPS 8088 Web access protocol.
HTTP 8088 Web access protocol.
SSH 8022 Access the PBX via SSH to debug the system.
Important: Do not enable SSH if you don't need to debug the system.
FTP 21 Access the PBX via FTP to download files from the PBX or upload files to the PBX.
Important: Do not enable FTP if you don't need it.
TFTP /

Yeastar S-Series VoIP PBX works as a TFTP server when auto provisioning phones.

You can disable TFTP if you don't need to provisioning the phones.

IAX 4569 IAX (Inter-Asterisk Exchange Protocol)
SIP UDP 5060 Registration port of SIP UDP.
SIP TCP 5060 Registration port of SIP TCP.
SIP TLS 5061 Secure SIP packets with TLS encryption. TLS allows safe transactions over untrusted networks and with authenticated parties.
AMI 5038 AMI ( Asterisk Manager Interface) a system monitoring and management interface provided by Asterisk.

You can connect a third-party software to the PBX via AMI interface.