Grandstream Device Configuration STATUS BASIC SETTINGS ADVANCED SETTINGS FXS PORT1 FXS PORT2 New Admin Password:   (Must contain 8-30 characters. Purposely not displayed for security protection.) Confirm Admin Password:     Passwords don't match Disable User Level Web Access:   No      Yes   Disable Viewer Level Web Access:   No      Yes   Enable strict password rules:   No     Yes Minimum password length:    (Range 4-30, default 8) Required number of character classes:    (Range 0-4, default 3) Allowed Character classes:   Lower case   Upper case   Numbers   Special Characters    ( default 7 )   Layer 2 QoS:  802.1Q/VLAN Tag   (0-4094)      SIP 802.1p   (0-7)      RTP 802.1p   (0-7) Black List for WAN Side Port:   STUN server is:   (URI or IP:port) Keep-alive Interval:   (in seconds, default 20 seconds) Use STUN to detect network connectivity:   No     Yes, total STUN response misses to restart DHCP (mininum=3) Use DNS to detect network connectivity:   No     Yes Use ARP to detect network connectivity:   No     Yes Verify host when using HTTPS:   No     Yes Firmware Upgrade and Provisioning:   Upgrade Via     TFTP     HTTP     HTTPS     FTP     FTPS           Firmware Server Path:           Config Server Path:           XML Config File Password:           HTTP/HTTPS/FTP/FTPS User Name:           HTTP/HTTPS/FTP/FTPS Password:           Firmware File Prefix:           Firmware File Postfix:           Config File Prefix:               Config File Postfix:       Enable using tags in URL:               No     Yes   Always send HTTP Basic Authentication Information:               No     Yes   Allow DHCP Option 66 or 160 to override server:               No     Yes   Additional Override DHCP Option:           None Option 150   3CX Auto Provision:               No     Yes   Automatic Upgrade:               No               Yes, every minutes(30-5256000).               Yes, daily at start hour (0-23), at end hour (0-23).                 Yes, weekly on day (0-6).   Randomized Automatic Upgrade:     No     Yes     Always Check for New Firmware at Boot up     Check New Firmware only when F/W pre/suffix changes     Always Skip the Firmware Check Configuration File Types Allowed:   All XML only Download and Process All Available Config Files:   No      Yes   Disable SIP NOTIFY Authentication:   No      Yes  (Device will not challenge NOTIFY with 401 when set to Yes) Authenticate Conf File:   No      Yes   (cfg file would be authenticated before acceptance if set to Yes) Validate Server Certificates:   No      Yes  (validate server certificates with our trusted list of TLS connections) Trusted CA Certificates A:   Trusted CA Certificates B:   Load CA Certificates:   Built-in trusted certificates Custom trusted certificates All trusted certificates   SIP TLS Certificate:   SIP TLS Private Key:   SIP TLS Private Key Password:   Custom Certificate: (Private Key + Certificate)   Enable TR-069:   No       Yes   ACS URL:   ACS Username:   ACS Password:   Periodic Inform Enable:   No       Yes   Periodic Inform Interval:   Connection Request Username:   Connection Request Password:   Connection Request Port:   CPE SSL Certificate:   CPE SSL Private Key:     Enable SNMP:   No       Yes   SNMP Version:   Version 1 Version 2c Version 3 SNMP Port:   (161 or 1025-65535. Default 161) SNMP Trap IP Address:   SNMP Trap Port:   (162 or 1025-65535. Default 162) SNMP Trap Version:   Version 1 Version 2c Version 3 SNMP Trap Interval:   (1-1440. Default 5 minutes) SNMPv1/v2c Community:   SNMPv1/v2c Trap Community:   SNMPv3 User Name:   SNMPv3 Security Level:   noAuthUser authUser privUser SNMPv3 Authentication Protocol:   None MD5 SHA SNMPv3 Privacy Protocol:   None DES AES|AES128 SNMPv3 Authentication Key:   SNMPv3 Privacy Key:   SNMPv3 Trap User Name:   SNMPv3 Trap Security Level:   noAuthUser authUser privUser SNMPv3 Trap Authentication Protocol:   None MD5 SHA SNMPv3 Trap Privacy Protocol:   None DES AES|AES-128 SNMPv3 Trap Authentication Key:   SNMPv3 Trap Privacy Key:     Enable RADIUS Web Access Control:   No   Yes Action upon Radius Auth Server Error:   Reject Access   Authenticate Locally RADIUS Auth Protocol:   PAP CHAP MsCHAPv1 MsCHAPv2 RADIUS Auth Server Address:   RADIUS Auth Server Port:   RADIUS Shared Secret:   RADIUS VSA Vendor ID:   RADIUS VSA Access Level Attribute:     Enable DDNS:   No   Yes DDNS Server:   dyndns.org freedns.afraid.org zoneedit.com no-ip.com oray.net DDNS Username:   DDNS Password:   (purposely not displayed for security protection) DDNS Hostname:   DDNS Hash:     Enable OpenVPN:   No   Yes OpenVPN Server Address:   OpenVPN Port:   OpenVPN Interface type:   TAP   TUN OpenVPN Transport:   UDP   TCP Enable OpenVPN LZO Compression:   No   Yes OpenVPN Encryption:   BF-CBC 128 bit default key (variable) Default DES-CBC 64 bit default key (fixed) RC2-CBC 128 bit default key (variable) DES-EDE-CBC 128 bit default key (fixed) DES-EDE3-CBC 192 bit default key (fixed) DESX-CBC 192 bit default key (fixed) RC2-40-CBC 40 bit default key (variable) CAST5-CBC 128 bit default key (variable) RC2-64-CBC 64 bit default key (variable) AES-128-CBC 128 bit default key (fixed) AES-192-CBC 192 bit default key (fixed) AES-256-CBC 256 bit default key (fixed) OpenVPN Digest:   SHA1 Default MD5 RSA-MD5 RSA-SHA1 DSA-SHA1-old DSA-SHA1 RSA-SHA1-2 DSA RIPEMD160 RSA-RIPEMD160 MD4 RSA-MD4 ecdsa-with-SHA1 RSA-SHA256 RSA-SHA384 RSA-SHA512 RSA-SHA224 SHA256 SHA384 SHA512 SHA244 whirlpool OpenVPN Username:   OpenVPN Password:   OpenVPN CA:   OpenVPN Certificate:   OpenVPN Client Key:   OpenVPN Client Key Password:     System Ring Cadence:   (cadence on and off are in (0, 16000) ms) Call Progress Tones: Dial Tone:   Ringback Tone:   Busy Tone:   Reorder Tone:   Confirmation Tone:   Call Waiting Tone:   Prompt Tone:   Conference Party Hangup Tone:   Special Proceed Indication Tone:   Special Condition Tone:   Syntax: f1=val[,f2=val[,c=on1/off1[-on2/off2[-on3/off3]]]]; (Frequencies are in (10, 4000) Hz and cadence on and off are in (0, 64000) ms) Prompt Tone Access Code:   (Key pattern to get Prompt Tone. Maximum 20 digits. No default.) Lock Keypad Update:   No       Yes   (configuration update via keypad is disabled if set to Yes) Disable Voice Prompt:   No       Yes   (voice prompt is disabled if set to Yes) Disable Direct IP Call:   No       Yes   (direct IP call is disabled if set to Yes) Play Busy Tone When Account is unregistered:   No       Yes   (If set to Yes, busy tone will be played when user goes offhook from an unregistered account.)   Blacklist For Incoming Calls:     NTP Server:   (URI or IP address) Allow DHCP Option 42 to override NTP server:   No   Yes DHCP Option 17 Enterprise Number:   CDR File Option:   Keep       Overwrite       Disabled   SIP File Option:   Keep       Overwrite   Disable Weak TLS Cipher Suites:   Enable Weak TLS Ciphers Suites Disable Symmetric Encryption RC4/DES/3DES Disable Symmetric Encryption SEED Disable Symmetric Encryption IDEA/eNULL Disable All Of The Above Weak Symmetric Encryption Disable Symmetric Authentication MD5 Disable All Of The Above Weak Symmetric Authentication Disable Protocol Version SSLv2/SSLv3 Disable All Of The Above Weak Protocol Version Disable Server Authentication aNULL/aECDH Disable All Of The Above Weak Server Authentication Disable Key Exchange Algorithm kRSA Disable All Of The Above Weak Key Exchange Algorithm Disable All Of The Above Weak TLS Ciphers Suites Minimum TLS Version:   Unlimited TLS 1.0 TLS 1.1 TLS 1.2   Minimum TLS version should be less or equal than Maximum TLS version Maximum TLS Version:   Unlimited TLS 1.0 TLS 1.1 TLS 1.2 Syslog Protocol:   UDP SSL/TLS Syslog Server:   Syslog Level:   EXTRA DEBUG DEBUG INFO WARNING ERROR NONE Send SIP Log:   No   Yes   Information Capture: Automatic Reboot:   No   Yes, reboot every day at hour   (0-23)   Yes, reboot every week at day   (0-6)   Yes, reboot every month at day   (0-30) Download Device Configuration: Download Device XML Configuration: Upload Firmware: Upload Configuration: Export Backup Configuration: Restore From Backup Configuration:   E911/HELD Protocol: Enable E911:   No   Yes HELD Protocol:   HTTP   HTTPS HELD Synchronization Interval:   (in minutes. 0 (Disable) or Between 30-1440) Location Server:   Location Server Username:   Location Server Password:   Secondary Location Server:   Secondary Location Server Username:   Secondary Location Server Password:   HELD Location Types:   HELD NAI:   No   Yes HELD Identity 1:   HELD Identity 1 Value:   HELD Identity 2:   HELD Identity 2 Value:   HELD Identity 3:   HELD Identity 3 Value:   HELD Identity 4:   HELD Identity 4 Value:   HELD Identity 5:   HELD Identity 5 Value:   HELD Identity 6:   HELD Identity 6 Value:   HELD Identity 7:   HELD Identity 7 Value:   HELD Identity 8:   HELD Identity 8 Value:   HELD Identity 9:   HELD Identity 9 Value:   HELD Identity 10:   HELD Identity 10 Value:   E911 Emergency Numbers:   Geolocation-Routing Header:   No   Yes Priority Header:   No   Yes          All Rights Reserved Grandstream Networks, Inc. 2006-2024