It is vital to control the IP network access of IP Office to reduce the exposure to attack. Network security integration is outside the scope of this document; however the following section covers some items that must be reviewed as part of network security hardening.

If using any level of external IP access, IP Office must only be connected via a properly configured Firewall or other network security mechanism (for example, VPN, MPLS). It must never be connected directly.

If no external IP access is required, IP Office must be isolated using a firewall or other mechanism.

Using IP Office Manager, the IP Office IP Route table should be inspected for any gateway routes that may have been unintentionally acquired via DHCP. These should be deleted if not required and the DCHP settings modified to prevent re-occurrence.