[Freeswitch-users] Avoiding DDoS with verto?
dujinfang at gmail.com
Wed Oct 13 01:26:50 UTC 2021
maybe tweak some code so it can log the src ip and fail2ban can catch it.
On Fri, Oct 8, 2021 at 5:11 AM David P <davidswalkabout at gmail.com> wrote:
> After reading about recent DDoS attacks on VOIP providers in
> in which Freeswitch is mentioned, I wondered what current practices are for
> services that must serve the public Internet.
> For example, a service that is purely verto-based seems like it could
> protect itself in this way:
> 1) Block requests on all ports (except the verto WSS login) unless the
> request is from an address that's already part of signaling.
> 2) To protect signaling, put it behind AWS API Gateway, which provides
> rate-limiting, and add an authorization check.
> Does this seem like it would defend against DDoS? Can FS be configured to
> do #1?
> The FreeSWITCH project is sponsored by SignalWire https://signalwire.com
> Enhance your FreeSWITCH install with disruptive priced SMS and PSTN
> Build your next product on our scalable cloud platform.
> Join our online community to chat in real time
> Professional FreeSWITCH Services
> sales at freeswitch.com
> Official FreeSWITCH Sites
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the FreeSWITCH-users