Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
configuration:security:block_authentication_scan [2019/05/06 16:47]
jgil
configuration:security:block_authentication_scan [2019/06/19 10:51]
asilva
Line 3: Line 3:
  
 At the start you will need to create a new list: At the start you will need to create a new list:
-   * Networking → Traffic classes → Lists → Create new list called ​sip +   * Networking → Traffic classes → Lists → Create new list called ​"​blacklist"​ 
-   * Then you have to block the IPs on the sip list, so:+   * Then you have to block the IPs on this list, so:
    * Secutiry → Firewall → Add input:    * Secutiry → Firewall → Add input:
    * x – Enabled ​    * x – Enabled ​
    * Type: Input    * Type: Input
-   * Traffic: x – Custom; Networtk: x – Source Address x – Lists: ​sip+   * Traffic: x – Custom; Networtk: x – Source Address x – Lists: ​blacklist
    * Action: Drop    * Action: Drop
 +
 +
 After that you will create a trigger rule: After that you will create a trigger rule:
    * Monitor → Trigger → Rules: Add    * Monitor → Trigger → Rules: Add
    * x - Enabled    * x - Enabled
-   * Name: Sip_ban+   * Name: ban ip
    * Priority: First    * Priority: First
    * Conditions: x – Custom; Variables: Variable text: Name: action Expresion: ^ban$    * Conditions: x – Custom; Variables: Variable text: Name: action Expresion: ^ban$
-   * Action: x – Custom; IP list : x – Add; ${network_ip}/​32;​ List: sip+   * Action: x – Custom; IP list : x – Add; ${network_ip}/​32;​ List: blacklist
 The last thing you need to do is to activate Authentication ban: The last thing you need to do is to activate Authentication ban:
    * Telephony → General → Authentication Ban:    * Telephony → General → Authentication Ban:
Line 27: Line 29:
 Also you can create another trigger to unban the banned IPs: Also you can create another trigger to unban the banned IPs:
    * x – Enabled ​    * x – Enabled ​
-   * Name: unban_sip+   * Name: unban ip
    * Priority: First    * Priority: First
    * Conditions: x – Custom; Variables: Variable text: Name: action Expresion: ^unban$    * Conditions: x – Custom; Variables: Variable text: Name: action Expresion: ^unban$
-   * Action: x – Custom; IP list : x – Add; ${network_ip}/​32;​ List: sip+   * Action: x – Custom; IP list : x – Delete; ${network_ip}/​32;​ List: blacklist
/home/www/wiki/data/pages/configuration/security/block_authentication_scan.txt · Last modified: 2019/06/19 10:51 by asilva
 
Recent changes RSS feed Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki