We are in an Urgent situation. We are currently using an Juniper SSG-20 Firewall and RingCentral. Our primary call group is, we think, being attacked by SipVicious. We have a case opened with RingCentral but decided to try to community as well to see if there was anyone out there with Juniper experience in setting up their firewall with RingCentral ports and IP's to prevent attacks.
We built a policy and services in the Juniper but we still have issues.
We are using VVX-410 phones and RingCentral Standard.
Symptoms of attack thus far:
Only happening to four phones out of thirty in the company. The four are in a call group. Each has presence setup to see the other users if one phone, getting call, etc. Presence lights will all start to blink as if getting a call but no ringer. If you click on button to get call, we have a caller ID but no call. We call the number in caller ID and they state they did not call us.
Newest wrinkle is loss of audio. After so many calls, the individual phone can not hear the caller but the caller can hear us. We only regain audio after rebooting the phone.
Any suggestions or ideas from the community would be appreciated.
