[Freeswitch-users] Security issue

Giovanni Maruzzelli gmaruzz at gmail.com
Sat Aug 15 18:22:47 MSD 2015 

An external invite in default config go to the public context. That is the
expected and correct behavior, in default config.

Eg: is where the incoming did calls would go, and then (in default config)
are dispatched to local extensions (1000...1020).

Obviously, you can change the config to fit your needs.

-giovanni

sent from my mobile,
Giovanni Maruzzelli
cell: +39 347 266 56 18
On Aug 15, 2015 4:14 PM, "Anthony Minessale" <anthony.minessale at gmail.com>
wrote:

> The public context is unauthentecared that is why its called public.  Only
> public facing extensions should be defined there.
>
> The example configs are only a suggestion on how to run your server.  The
> best approach is to learn how the sofia profiles and contexts work to
> configure it to your needs.
>
> On Saturday, August 15, 2015, Sergey Safarov <s.safarov at gmail.com> wrote:
>
>> 1) Output network_ip of received INVITE with appropriate comment like
>> "Block for one day ip x.x.x.x"
>> 2) Add fail2ban rule to search strings like "Block for one day ip
>> x.x.x.x" and block ip
>>
>> On Sat, Aug 15, 2015 at 12:18 PM, Nikolay Zaytsev <nzaytsevc at gmail.com>
>> wrote:
>>
>>> Hi,all)
>>> I have the freeswitch on public ip with set up fail2ban.
>>> However, there is an external invites which proceed to dialplan's
>>> context public.
>>> How can I defend my freeswitch from such attaks?
>>> The log of such attack is in the attachment.
>>> Bets Regards,
>>> Nikolay Zaytsev
>>>
>>> _________________________________________________________________________
>>> Professional FreeSWITCH Consulting Services:
>>> consulting at freeswitch.org
>>> http://www.freeswitchsolutions.com
>>>
>>> Official FreeSWITCH Sites
>>> http://www.freeswitch.org
>>> http://confluence.freeswitch.org
>>> http://www.cluecon.com
>>>
>>> FreeSWITCH-users mailing list
>>> FreeSWITCH-users at lists.freeswitch.org
>>> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
>>> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
>>> http://www.freeswitch.org
>>>
>>
>>
>
> --
> Anthony Minessale II       ♬ @anthmfs  ♬ @FreeSWITCH  ♬
>
>http://freeswitch.org/http://cluecon.com/> http://twitter.com/FreeSWITCH
> ☞ irc.freenode.net #freeswitch ☞ *http://freeswitch.org/g+
> <http://freeswitch.org/g+>*
>
> ClueCon Weekly Development Call
> ☎ sip:888 at conference.freeswitch.org  ☎ +19193869900
>
> https://www.youtube.com/watch?v=9XXgW34t40s
> https://www.youtube.com/watch?v=NLaDpGQuZDA
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> http://www.freeswitchsolutions.com
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://confluence.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20150815/afb9931b/attachment.html

Join us at ClueCon 2016 Aug 8-12, 2016
More information about the FreeSWITCH-users mailing list