Information Security

xplico – Backtrack 5 – Information Gathering – Network Analysis – Network Traffic Analysis – xplico

Xplico is a NFAT or Network Forensics Analysis Tool that is designed to either capture traffic in real time sessions or to provide an interface to upload PCAP (Packet Capture Data) files for analysis. The current version in Backtrack Linux 5 release 3 is 0.7 however the latest Xplico version is Xplico 1.0.1. I believe there are some dependencies required in the later versions of Xplico so I will write an updated article once Backtrack 6 comes up and the latest version of Xplico can easily be installed.

Technology Insights

Asterisk Check T1 Status Because Faxes Sent Via Hylafax Fail

If you have a Asterisk system being used for sending and receiving faxes and all of the sudden the faxes all start failing with various error messages the first thing that should be checked is the status of either the analog telephone lines, the T1’s, or the SIP provider you are using as a outbound proxy. Below I describe some of the error messages that may be received via Hylafax in this example as well as how to check the status of the T1’s themselves to make sure that there are no alarms present before you have to get into troubleshooting Hylafax in detail.

Technology Insights

Change Background Display On Polycom SoundPoint SIP Phones

Another task I recently completed for a client of mine was to modify the background image for Polycom SoundPoint SIP phones connecting to the companies VoIP network externally. Depending on the model of the Polycom SoundPoint you can modify the background image that displays on the LCD panel using a URL. In this case the phone type was a Polycom SoundPoint 550 and he phones connecting via an external network were not displaying the background image that was set for phones on the internal network. Below is information on where you can find where the background image is set and an example configuration file that explains what could be changed to have different phones locate the background image on the Polycom SoundPoint SIP phones also known as the home display.

Technology Insights

Set Time For Polycom SoundPoint Phones Via CFG Files, Override DHCP NTP Settings For SoundPoint Phones

While working on various things in a Asterisk VoIP deployment earlier I needed to override the DHCP NTP settings for a specific phone because this particular user was remote. The configuration file for their phone was actually using a different outbound proxy and SIP registration server address so they could operate remotely. One of the issues pointed out to me was the fact that the phone’s time was never correct and after some basic investigation I was able to locate the issue which is described below as well as how to override the DHCP NTP address settings via the Polycom SountPoint CFG (configuration) files.