Unauthorize Traffic
Replies (7)
RE: Unauthorize Traffic
-
Added by Levy Ryan Nolasco almost 10 years ago
Hi,
You can block the IP address on IPTABLES on which the extension 6019 is registered from. Try to change also your dial prefix.
RE: Unauthorize Traffic
-
Added by Rumman Khan almost 10 years ago
Hello
Please guide me to Block IP address.
There is heavy traffic resulting in voice breakage. I have to block this IP -62.141.45.182.
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"604" <sip:604@66.240.236.205>' failed for '62.141.45.182' - Wrong password
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"605" <sip:605@66.240.236.205>' failed for '62.141.45.182' - Wrong password
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"605" <sip:605@66.240.236.205>' failed for '62.141.45.182' - Wrong password
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"604" <sip:604@66.240.236.205>' failed for '62.141.45.182' - Wrong password
regards,
RE: Unauthorize Traffic
-
Added by Rumman Khan almost 10 years ago
Md Rumman Khan wrote:
Hello
Please guide me to Block IP address.
There is heavy traffic resulting in voice breakage. I have to block this IP -62.141.45.182.
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"604" <sip:604@66.240.236.205>' failed for '62.141.45.182' - Wrong password
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"605" <sip:605@66.240.236.205>' failed for '62.141.45.182' - Wrong password
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"605" <sip:605@66.240.236.205>' failed for '62.141.45.182' - Wrong password
[Jun 27 13:42:18] NOTICE5547: chan_sip.c:16835 handle_request_register: Registration from '"604" <sip:604@66.240.236.205>' failed for '62.141.45.182' - Wrong passwordregards,
I have used this command now:
#iptables -A INPUT -s 62.141.45.182 -j DROP
#service iptables save
#service iptables restart
but this is not working ,I am getting same traffic
[Jun 27 19:10:17] NOTICE4307: chan_sip.c:16835 handle_request_register: Registration from '"6002" <sip:6002@66.240.236.209>' failed for '62.141.45.182' - Wrong password
Please help me with this. A lot of congestion ocuring because of this.
RE: Unauthorize Traffic
-
Added by Levy Ryan Nolasco almost 10 years ago
Hi,
Try command below instead. After saving don't forget to reload/restart your iptables.
-A RH-Firewall-1-INPUT -s IPAddressYouWantToBlock -j DROP
Regards,
Ryan
RE: Unauthorize Traffic
-
Added by Rumman Khan almost 10 years ago
Hi ,
I tried this at command prompt. it says command not found.
-A RH-Firewall-1-INPUT -s 62.141.45.182 -j DROP
-bash: -A: command not found
Vicidial version
VERSION: 2.4-309a
BUILD: 110430-1642
regards,
RE: Unauthorize Traffic
-
Added by striker 247 almost 10 years ago
try
iptables -I INPUT -s 62.141.45.182 -j DROP
iptables-save
br
striker
www.striker24x7.blogspot.com
RE: Unauthorize Traffic
-
Added by Rumman Khan almost 10 years ago
Hello striker24x7,
Thank You for your help , iptables helped me a lot .It works fine. I used to block the unauthorized IP address with help of IPtables.
but there is one problem everyday hackers keep changing the IP Address and I have to block everyday.
Is there any automated method/script to do this.
My Goautodial Version is 3.0 and I don't know why Fail2Bain fails in blocking these IP address.
regards,