I was reading an article in Computer World about VoIP security, which talks about securing your VoIP traffic much like you would sensative data traffic. (Think purchasing something online with a credit card…)

Seperating the traffic to a different LAN or VLAN, encryption, connecting endpoints via VPN or other secure tunnel, using access lists at the gateway/firewall, etc. are all possible solutions, if not combining them all.

Securing your VoIP traffic shouldn’t be anything “drastically different” from the measures corporations have always taken to protect their data, but I would add that they require a slightly different point of view.