<div dir="ltr"><div class="gmail_default" style="font-family:"trebuchet ms",sans-serif">​Hi, Lyubo!</div><div class="gmail_default" style="font-family:"trebuchet ms",sans-serif"><br></div><div class="gmail_default" style="font-family:"trebuchet ms",sans-serif">I had similar case. Use process_cdr variable in dialplan, if you do not want to store in CDR.</div><div class="gmail_default" style="font-family:"trebuchet ms",sans-serif"><br></div><action application="set" data="process_cdr=<div class="gmail_default" style="font-family:"trebuchet ms",sans-serif;display:inline">​false​</div>"/><div><br></div><div><div class="gmail_default" style="font-family:"trebuchet ms",sans-serif">​Hope it helps, Gregor​</div><br></div><img src="https://mltrk.io/pixel/FoZufc6knImBkEmN71uz?rid=FoZufc6knImBkEmN71uz" width="1" height="1" border="0"></div><div class="gmail_extra"><br><div class="gmail_quote">2017-12-18 21:44 GMT+01:00 Michael Collins <span dir="ltr"><<a href="mailto:msc@freeswitch.org" target="_blank">msc@freeswitch.org</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Hi Lyubo,<div><br></div><div>In this case it may be better to see if your CDR parser can skip the non-numeric caller id values, perhaps by adding a validation check prior to performing the parse action. As a rule of thumb, if your CDR parser can be tripped up by the data it is parsing then it needs to be hardened. I'm sure many here would highly recommend sanitizing/validation as a best practice, particularly when handling data that comes from the public Internet. Another consideration is that you may actually want to have a record of these kinds of attacks in case there is a need to investigate an incident or otherwise analyze attack patterns.</div><div><br></div><div>I would recommend that you change the behavior of the parser from "complaining" to "keeping the CDR database clean but logging invalid input for future reference."</div><div><br></div><div>Hope this helps,</div><div>-MC</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote"><div><div class="h5">On Fri, Dec 15, 2017 at 1:11 PM, Lyubo Popov <span dir="ltr"><<a href="mailto:koki.roul@gmail.com" target="_blank">koki.roul@gmail.com</a>></span> wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div class="h5"><div dir="ltr">Hello all,<div><br><div>Maybe someone can help me with this problem and will be greatly appreciated. We are getting calls with CallerID like this one  <span style="font-family:Verdana,Arial,Helvetica">‘hi'or‘x’='x'. Later when our billing start parsing the CDRs it will complain because of the first character "`". My question I suppose is, how to prevent such calls to get added to the CDRs? We want to reject the call that has non numeric CallerID and not get it added in the CDRs. This is what we have in the dialplan.</span></div></div><div><span style="font-family:Verdana,Arial,Helvetica"><br></span></div><div><div><font face="Verdana, Arial, Helvetica"><extension name="Routing"></font></div><div><font face="Verdana, Arial, Helvetica">        <condition field="${radius_auth_result}" expression="0"/></font></div><div><font face="Verdana, Arial, Helvetica"><br></font></div><div><font face="Verdana, Arial, Helvetica">        <!--</font></div><div><font face="Verdana, Arial, Helvetica">        <condition field="${h323-redirect-number}<wbr>" expression="^(.+)$" break="never"></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="destination_number=$1" /></font></div><div><font face="Verdana, Arial, Helvetica">        </condition></font></div><div><font face="Verdana, Arial, Helvetica">        --></font></div><div><font face="Verdana, Arial, Helvetica">        <condition field="caller_id_number" expression="^([0-9]+)$"></font></div><div><font face="Verdana, Arial, Helvetica">            <anti-action application="hangup"/>            </font></div><div><font face="Verdana, Arial, Helvetica"><span style="white-space:pre-wrap">                </span></condition><span style="white-space:pre-wrap">      </span></font></div><div><font face="Verdana, Arial, Helvetica">        <condition field="destination_number" expression="^(.+)$"></font></div><div><font face="Verdana, Arial, Helvetica">            <!--<action application="info"/>--></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="export" data="nolocal:h323-call-origin<wbr>=originate"/></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="sip_h_X-accountcode=${ac<wbr>countcode}" /></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="call_direction=outbound" /></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="hangup_after_bridge=true<wbr>"/></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="continue_on_fail=true"/></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="inherit_codec=true" /></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="call_timeout=20"/></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="fail_on_single_reject=US<wbr>ER_BUSY" /></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="origination_caller_id_na<wbr>me=${sip_req_user}"/></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="origination_caller_id_nu<wbr>mber=${sip_from_user}"/></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="set" data="execute_on_answer=sched_<wbr>hangup +${h323-credit-time} alloted_timeout" /></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="bridge" data="{sip_invite_from_uri=sip<wbr>:${sip_from_user}@${sip_networ<wbr>k_ip}}sofia/internal/${destina<wbr>tion_number}@x.x.x.x:5060" /></font></div><div><font face="Verdana, Arial, Helvetica">            <action application="hangup" data="${bridge_hangup_cause}"/<wbr>></font></div><div><font face="Verdana, Arial, Helvetica">        </condition></font></div><div><font face="Verdana, Arial, Helvetica">    </extension></font></div></div><div><font face="Verdana, Arial, Helvetica"><br></font></div><div><font face="Verdana, Arial, Helvetica">Thank you all!</font></div><div><font face="Verdana, Arial, Helvetica"><br></font></div><div><font face="Verdana, Arial, Helvetica">L.Popov</font></div></div><div id="m_2040158889290273727m_-7626445720286026976DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2"><br>
<table style="border-top:1px solid #d3d4de">
        <tbody><tr>
        <td style="width:55px;padding-top:13px"><a href="https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail&utm_term=icon" target="_blank"><img src="https://ipmcdn.avast.com/images/icons/icon-envelope-tick-round-orange-animated-no-repeat-v1.gif" alt="" width="46" height="29" style="width:46px;height:29px"></a></td>
                <td style="width:470px;padding-top:12px;color:#41424e;font-size:13px;font-family:Arial,Helvetica,sans-serif;line-height:18px">Virus-free. <a href="https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail&utm_term=link" style="color:#4453ea" target="_blank">www.avast.com</a>
                </td>
        </tr>
</tbody></table><a href="#m_2040158889290273727_m_-7626445720286026976_DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2" width="1" height="1"></a></div>
<br></div></div>______________________________<wbr>______________________________<wbr>_____________<br>
Professional FreeSWITCH Consulting Services:<br>
<a href="mailto:consulting@freeswitch.org" target="_blank">consulting@freeswitch.org</a><br>
<a href="http://www.freeswitchsolutions.com" rel="noreferrer" target="_blank">http://www.freeswitchsolutions<wbr>.com</a><br>
<br>
Official FreeSWITCH Sites<br>
<a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br>
<a href="http://confluence.freeswitch.org" rel="noreferrer" target="_blank">http://confluence.freeswitch.o<wbr>rg</a><br>
<a href="http://www.cluecon.com" rel="noreferrer" target="_blank">http://www.cluecon.com</a><br>
<br>
FreeSWITCH-users mailing list<br>
<a href="mailto:FreeSWITCH-users@lists.freeswitch.org" target="_blank">FreeSWITCH-users@lists.freeswi<wbr>tch.org</a><br>
<a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" rel="noreferrer" target="_blank">http://lists.freeswitch.org/ma<wbr>ilman/listinfo/freeswitch-user<wbr>s</a><br>
UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" rel="noreferrer" target="_blank">http://lists.frees<wbr>witch.org/mailman/options/<wbr>freeswitch-users</a><br>
<a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br></blockquote></div><br></div>
<br>______________________________<wbr>______________________________<wbr>_____________<br>
Professional FreeSWITCH Consulting Services:<br>
<a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><br>
<a href="http://www.freeswitchsolutions.com" rel="noreferrer" target="_blank">http://www.<wbr>freeswitchsolutions.com</a><br>
<br>
Official FreeSWITCH Sites<br>
<a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br>
<a href="http://confluence.freeswitch.org" rel="noreferrer" target="_blank">http://confluence.freeswitch.<wbr>org</a><br>
<a href="http://www.cluecon.com" rel="noreferrer" target="_blank">http://www.cluecon.com</a><br>
<br>
FreeSWITCH-users mailing list<br>
<a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.<wbr>freeswitch.org</a><br>
<a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" rel="noreferrer" target="_blank">http://lists.freeswitch.org/<wbr>mailman/listinfo/freeswitch-<wbr>users</a><br>
UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" rel="noreferrer" target="_blank">http://lists.<wbr>freeswitch.org/mailman/<wbr>options/freeswitch-users</a><br>
<a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br></blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><table border="0" style="font-size:12px;border:1px dashed rgb(187,187,187);font-family:sans-serif;width:537px"><tbody style="border-spacing:2px;border:0px none rgb(128,128,128)"><tr valign="top" style="border-spacing:2px;border:0px none rgb(128,128,128)"><td style="color:rgb(32,32,32);margin:8px;border-width:0px 1px 0px 0px;border-style:none solid none none;border-color:rgb(32,32,32) rgb(0,161,230) rgb(32,32,32) rgb(32,32,32);font-weight:bold;letter-spacing:1px;text-transform:capitalize;vertical-align:top;padding:1px 8px 1px 1px;width:63px;outline:rgb(32,32,32) none 0px;border-spacing:2px"><span style="color:rgb(0,161,230);outline:rgb(0,161,230) none 0px;border-spacing:2px;border:0px none rgb(0,161,230)"><font face="georgia, serif" size="2">Gregor Nanger</font></span><div style="font-size:17px;font-family:sans-serif;width:63px;outline:rgb(32,32,32) none 0px;border-spacing:2px;border:0px none rgb(32,32,32)"> </div></td><td style="margin:8px;border:0px none rgb(80,80,80);vertical-align:top;padding:1px 1px 1px 6px;width:354px;outline:rgb(80,80,80) none 0px;border-spacing:2px"><font face="georgia, serif" size="1"><b>CTO</b><br>t./f.: 00386 (0) 7 6000 308/309 • m:. 00386 (0)41 756485 <br>• Infomedia d.o.o. • Jerebova 3, Novo mesto, Slovenia <br>• <a href="http://www.infomedia.si" target="_blank">www.infomedia.si</a></font></td></tr></tbody></table></div></div>
</div>