Protect asterisk again hackers (fail2ban)

If your asterisk box has a public interface or you receive Ip call from the outside world,

you will have to make sure that an unautorized user does reach your pbx and tries to make calls.

To do so, of course, you should start making sure that your sip.conf or iax.conf file has strong password and policies.

You can also use fail2ban. This process will parse any log file, detect IP addresses that failed to connect to a specific services (asterisk, ssh, ftp etc…). After a certain number of failure, fail2ban will automaticly add that adresss in your firewall and block the user for the next ‘x’ minutes.

Here is how you can configure fail2ban to protect your asterisk box.

http://www.voip-info.org/wiki/view/Fail2Ban+(with+iptables)+And+Asterisk

Comments

• Recently Written

  • You do not appear to have the sources for the `uname -r` kernel installed.
  • Foniva just launch a new call center software
  • Asterisk configuration templates. Use the (+) option
  • Asterisk : spy a conversation
  • Install asterisk on ubuntu (apt-get)
  • Asterisk security : ACL not respected on SIP INVITE
  • Asterisk and others PBX monitoring
  • Asterisk: send and receive fax
  • asterisk : Run linux command from asterisk cli
  • Asterisk security : AST-2009-004: Remote Crash Vulnerability in RTP stack

• Categories

  • Tricks
  • Uncategorized

• Archives

  • July 2010
  • May 2010
  • January 2010
  • November 2009
  • October 2009
  • August 2009
  • July 2009
  • June 2009
  • March 2009
  • February 2009
  • December 2008
  • November 2008
  • October 2008
  • September 2008
  • August 2008

• Admin

  • Log in
  • WordPress
  • XHTML

•