6.1 What are the authentication methods of VoIP connection between an originator and terminator?

HostedSwitch^sm defines where the call came from by IP address of TCP connection. Each given gateway belongs to one HostedSwitch^sm Member, so we can easily define who originated the call. As a measure against false calls HostedSwitch^sm verifies the Access Token of the calls. In addition SIP Originated calls are authenticated by username and password set in the Equipment settings.

6.2 How can I prevent my gateways from incoming unauthorized traffic?

You may protect your network with a firewall. Configure the access lists of your firewall in the following way: Deny TCP (at least on ports 1720 and 5060) to/from all external hosts except HostedSwitch^sm. Permit UDP (ports higher than 1024, except 5060) to/from all external hosts. Please see a configuration example. Please note that HostedSwitch^sm takes all the responsibility for the traffic authorized by HostedSwitch^sm At the same time, HostedSwitch^sm does not take any responsibility for traffic whose signaling has come from the sources other than HostedSwitch^sm.