Kevin Larsen <kevin.lar...@pioneerballoon.com> schrieb: > Based on SIP packets coming in from IP addresses you don't recognize, > while you may not be hacked, you would seem to have people probing your
I think, too, it's someone probing my IP... > system. One thing you can do at the firewall level is restrict inbound sip > communications to only those from your external phone providers. Depending > on their setup, they should be able to give you an IP, a range of IPs or a > name that can be used (i.e. sip.myphoneprovider.com). If you restrict your This is not really possible, since I'll login on my Asterisk from many Providers... > inbound sip to that, it will be very helpful. Also, there are further > steps you can take to harden your systems. An internet search will bring > up many, but here are a couple of good ones: > > http://blogs.digium.com/2009/03/28/sip-security/ > http://www.ipcomms.net/blog/70-11-steps-to-secure-your-asterisk-ip-pbx > http://nerdvittles.com/?p=580 OK, I set alwaysauthreject = yes and I discovered a allowguest, which I set to "no", too. The PBX is behind a Firewall and I just allow UDP 5060 and 10000-10100. Now I log the SIP-pakets coming from Internet, too... Hopefully I solved my problem... Thanks Luca Bertoncello (lucab...@lucabert.de) -- _____________________________________________________________________ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- New to Asterisk? Join us for a live introductory webinar every Thurs: http://www.asterisk.org/hello asterisk-users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
