[OpenSIPS-Users] attack from friendly-scanner

SamyGo govoiper at gmail.com
Mon Oct 8 11:50:44 CEST 2012


Hi,
Relax it says its Friendly !!

But still if you want to block it you've many options i.e in opensips.cfg
start put a condition $ua =~ "friendly-scanner".  If matched return
stateless some error.
Other option is to use pike module.
Another option is use fail2ban for opensips logs.
More sophisticated options involve firewalls with IPS and IDS modules.

I hope it was helpful.

BR
Sammy
 On Oct 8, 2012 2:33 PM, "Engineer voip" <forvoip4 at gmail.com> wrote:

> Hi All,
> I receveid several packets of registration from a  "friendly-scanner"  on
> my opensips server
> how can i do to block that please??
>
> --
>
> Best Regards.
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20121008/b4836d48/attachment.htm>


More information about the Users mailing list