On Tue, 2005-03-01 at 07:11, Colin Anderson wrote:
> >How about a combination of GotoIF, and app_dbodbc (or app_db):
>
> >exten => 700,1,playback(ddos-on)
> >exten => 700,2,DBput(DDOS/yes)
>
> >exten => 701,1,playback(ddos-off)
> >exten => 701,2,DBdel(DDOS/yes)
>
> >[mymainaa]
> >exten => s,1,DB
>Are these inbound or outbound calls? (both?) I am pretty confused
>about all of this...
Sorry, I should have been more specific. The primary Asterisk box that
connects with the PRI is the one I am concerned about being DoS'd - the
remote IAX peer runs off of a cable modem with a dynamic IP, I h
On Mon, 2005-02-28 at 14:20 -0600, Kristian Kielhofner wrote:
> His suggestion was basically the same thing, only in mine you would dial
> an extension to "activate" DDOS mode instead of running the database put
> from the command line.
>
> How about monitoring your hosts with "iax2/sip sh
Colin Anderson wrote:
How about a combination of GotoIF, and app_dbodbc (or app_db):
exten => 700,1,playback(ddos-on)
exten => 700,2,DBput(DDOS/yes)
exten => 701,1,playback(ddos-off)
exten => 701,2,DBdel(DDOS/yes)
[mymainaa]
exten => s,1,DBGET(TRUE=DDOS/yes)
exten => s,2,Do this
exten =) s,102,
>How about a combination of GotoIF, and app_dbodbc (or app_db):
>exten => 700,1,playback(ddos-on)
>exten => 700,2,DBput(DDOS/yes)
>exten => 701,1,playback(ddos-off)
>exten => 701,2,DBdel(DDOS/yes)
>[mymainaa]
>exten => s,1,DBGET(TRUE=DDOS/yes)
>exten => s,2,Do this
>exten =) s,102,do something
Primary * box detects DD0S -> runs:
asterisk -rx "database put PANIC DDOS YES"
and have your dialplan look for that database family/key being set to
determine which path it takes.
When the primary * box detects that the DD0S is over -> runs:
asterisk -rx "database del PANIC DDOS"
On Tue, 2005
Colin Anderson wrote:
I'm trying to formulate a strategy for our interconnected Asterisk IAX peers
to failover to the PSTN in the event of a DDoS. We currently use them like
this:
DID--->PRI--->Primary Asterisk--->IAX--->On-site Asterisk--->SIP
This works fine, and everyone is happy. One of my conc
I'm trying to formulate a strategy for our interconnected Asterisk IAX peers
to failover to the PSTN in the event of a DDoS. We currently use them like
this:
DID--->PRI--->Primary Asterisk--->IAX--->On-site Asterisk--->SIP
This works fine, and everyone is happy. One of my concerns, though, is if