Having an ongoing battle that i'm struggling to win.
Have a customer running a SnomOne PBX and one extension (102) is getting hacked on a regular basis.
Im at a loss on how to proceed with this one.
Some info..
All passwords (PBX admin / Extention / Handsets) are 12 char randomly generated.
All extension registrations are locked to MAC address and a single concurrent registration.
Trunk has an outbound proxy setup.
The users handset dosnt show any logs of having mad the calls.
PBX is running the latest version 2011-4.2.0.3981 (Win32)
I cant for the life of me work out how someone is logging onto the PBX uising the extention of 102.
As its locked to MAC and 1 concurrent reg which is being used by the Snom handset on site.
Where i can look to try and diagnose the issue further ?
Cheers
Colin.