Part of the solution, then, is to set up a separate TFTP server and point the test phone at it. For the TFTP server, I recommend pumpKIN which you can get at klever.net. I like this because the application is just an executable that you don't have to install. It's also simple, easy to use, only 140KB and free. Just run this on your laptop -- and don't forget to adjust your desktop firewall software as needed. As TFTP is totally unsecured, also don't forget to turn it off when you're done.
You've got a couple options for pointing your test phone to use your temporary TFTP server. One is to change the TFTP server (DHCP Option 150) for this specific phone. You might make this change easily to a subnet if you're going to plug the phone into a subnet that doesn't have any other production phones (which may be the case if you're in a lab, for instance). A better way would be to set up a specific lease for the phone's MAC address, with the special TFTP server, which would of course be the IP address of your laptop running pumpKIN or your favorite TFTP server.
Even more preferable, as it doesn't involve changing production systems in the middle of the day, is to manually configure the phone to look for your TFTP server. If this option is supported by your IP phone vendor, the procedure will be model-specific. As an example, in the case of a Cisco 7960, you'd press the "settings" button, then unlock the phone (by pressing **# if you're running SCCP or selecting "Unlock Phone" and entering the password if you're running SIP). On the SCCP image, you'd select option 32 and press "Yes," which enables the alternate TFTP server, then option 8 which lets you enter the IP address of your temporary TFTP server. Save and exit. When you reboot, the phone will be redirected to the private TFTP server without any chance of affecting all the other phones.
Tom Lancaster, CCIE# 8829 CNX# 1105, is a consultant with 15 years experience in the networking industry, and co-author of several books on networking, most recently, CCSPTM: Secure PIX and Secure VPN Study Guide published by Sybex.
This was first published in March 2006