<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Dears,<div class=""><br class=""></div><div class="">Kindly I noticed a very strange behaviour on Freeswitch that may allow non authorised users to make call through the system below is the log and my notice <font color="#b51a00" class="">highlighted, </font>you help will be appreciated.</div><div class=""><br class=""></div><div class=""><font color="#b51a00" class="">1-Below is a request coming from not authored IP.</font></div><div class=""><font color="#b51a00" class="">2-However the originating IP is “</font><span style="font-family: Menlo; font-size: 11px;" class="">142.54.179.218</span><font color="#b51a00" class="">” the from is as below as if it is from the same server:</font></div><div class=""><br class=""></div><div class=""><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class="">freeswitch@internal> recv 770 bytes from udp/[142.54.179.218]:5070 at 16:41:34.211099:</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> ------------------------------------------------------------------------</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> INVITE <a href="sip:9009972599796504@177.31.245.177:5080" class="">sip:9009972599796504@177.31.245.177:5080</a> SIP/2.0</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> To: 9009972599796504<<a href="sip:9009972599796504@177.31.245.177" class="">sip:9009972599796504@177.31.245.177</a>></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> From: <font color="#b51a00" class="">1000<<a href="sip:1000@177.31.245.177" class="">sip:1000@177.31.245.177</a>></font>;tag=e8473b10</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Via: SIP/2.0/UDP 142.54.179.218:5070;branch=z9hG4bK-d6e1ddab827448435f49ecaf6e613e2e;rport</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Call-ID: d6e1ddab827448435f49ecaf6e613e2e</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> CSeq: 1 INVITE</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Contact: <<a href="sip:1000@142.54.179.218:5070" class="">sip:1000@142.54.179.218:5070</a>></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Max-Forwards: 70</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Allow: INVITE, ACK, CANCEL, BYE</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> User-Agent: sipcli/v1.8</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Content-Type: application/sdp</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Content-Length: 285</div><p style="margin: 0px; font-size: 11px; font-family: Menlo; min-height: 13px;" class=""> <br class="webkit-block-placeholder"></p><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> v=0</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> o=sipcli-Session 1883669566 1798766211 IN IP4 142.54.179.218</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> s=sipcli</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> c=IN IP4 142.54.179.218</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> t=0 0</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> m=audio 5072 RTP/AVP 18 0 8 101</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=fmtp:101 0-15</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=rtpmap:18 G729/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=rtpmap:0 PCMU/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=rtpmap:8 PCMA/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=rtpmap:101 telephone-event/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=ptime:20</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> a=sendrecv</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><br class=""></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><font color="#b51a00" class="">3-Accordingly Freeswitch start to deal with the call normally</font></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><font color="#b51a00" class=""><br class=""></font></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><font color="#b51a00" class=""><br class=""></font></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> ------------------------------------------------------------------------</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class="">send 333 bytes to udp/[142.54.179.218]:5070 at 16:41:34.211442:</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> ------------------------------------------------------------------------</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> SIP/2.0 100 Trying</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Via: SIP/2.0/UDP 142.54.179.218:5070;branch=z9hG4bK-d6e1ddab827448435f49ecaf6e613e2e;rport=5070</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> From: 1000<<a href="sip:1000@177.31.245.177" class="">sip:1000@177.31.245.177</a>>;tag=e8473b10</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> To: 9009972599796504<<a href="sip:9009972599796504@177.31.245.177" class="">sip:9009972599796504@177.31.245.177</a>></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Call-ID: d6e1ddab827448435f49ecaf6e613e2e</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> CSeq: 1 INVITE</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> Content-Length: 0</div><p style="margin: 0px; font-size: 11px; font-family: Menlo; min-height: 13px;" class=""> <br class="webkit-block-placeholder"></p><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""> ————————————————————————————————————</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><br class=""></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><font color="#b51a00" class="">4-as we can see below Freeswitch consider the call coming from my server IP not from the remote IP(My server IP = 177.31.245.177)</font></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><br class=""></div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><span style="color: rgb(52, 187, 199);" class="">2015-01-14 16:41:34.203196 [NOTICE] switch_channel.c:1055 New Channel sofia/external/</span><font color="#b51a00" class=""><a href="mailto:1000@177.31.245.177" class="">1000@177.31.245.177</a> </font><font color="#34bbc7" class="">[d1879400-9c03-11e4-8cd6-2f1eb174d7b4]</font></div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_session.c:1053 Send signal <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> [BREAK]</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_session.c:1053 Send signal <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> [BREAK]</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:472 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) Running State Change CS_NEW</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] sofia.c:8812 <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> receiving invite from 142.54.179.218:5070 version: 1.4.13 git b942d0f 2014-11-03 19:53:00Z 64bit</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] sofia.c:6606 Channel <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> entering state [received][100]</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] sofia.c:6616 Remote SDP:</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">v=0</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">o=sipcli-Session 1883669566 1798766211 IN IP4 142.54.179.218</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">s=sipcli</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">c=IN IP4 142.54.179.218</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">t=0 0</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">m=audio 5072 RTP/AVP 18 0 8 101</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">a=rtpmap:18 G729/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">a=rtpmap:0 PCMU/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">a=rtpmap:8 PCMA/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">a=rtpmap:101 telephone-event/8000</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">a=fmtp:101 0-15</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">a=ptime:20</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; min-height: 13px;" class=""><br class=""></div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] sofia.c:6868 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) State Change CS_NEW -> CS_INIT</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_session.c:1388 Send signal <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> [BREAK]</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:491 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) State NEW</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:472 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) Running State Change CS_INIT</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:512 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) State INIT</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] mod_sofia.c:87 <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> SOFIA INIT</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:40 <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> Standard INIT</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:48 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) State Change CS_INIT -> CS_ROUTING</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_session.c:1388 Send signal <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> [BREAK]</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:512 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) State INIT going to sleep</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:472 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) Running State Change CS_ROUTING</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_channel.c:2184 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) Callstate Change DOWN -> RINGING</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:528 (<a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a>) State ROUTING</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] mod_sofia.c:123 <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> SOFIA ROUTING</div><div style="margin: 0px; font-size: 11px; font-family: Menlo; color: rgb(175, 173, 36);" class="">2015-01-14 16:41:34.203196 [DEBUG] switch_core_state_machine.c:166 <a href="mailto:sofia/external/1000@177.31.245.177" class="">sofia/external/1000@177.31.245.177</a> Standard ROUTING</div><div style="margin: 0px; font-size: 11px; font-family: Menlo;" class=""><font color="#b51a00" class="">2015-01-14 16:41:34.203196 [INFO] mod_dialplan_xml.c:558 Processing 1000 <1000>->9009972599796504 in context public</font></div></div><div class=""><br class=""></div><div class=""><br class=""></div></body></html>