I have a new SIP VOIP phone system and was hacked.
I have a local phyical PBX.
I want to restrict the SIP port 5060 to only allow access from the SIP providers WAN IP.
e.g. Only Sip provider on WAN 126.96.36.199 can access port 5060 via the router
I know about port forwards (virtual filters etc) but actually have NOT needed to do this for the pbx which is a little surprising/confusing
I am guessing uPnP may be working but is not listed under NAT but never really monitored this status page so perhaps not shown.
I don't think I want to open full access to the pbx IP which I have read, Just the port.
1) Is the fact I have not opened the port make it more secure (I read if you forward it can make detection a little easier)
2) What settings do I need to I guess block every IP apart from the one I want
3) What settings to allow just this one Wan IP, Will I NEED to now add port forwarding (even though not needed currently)