<div dir="ltr"><div class="gmail_extra">You can also consider using the permissions module. If the src IP is there, then you can accept the request, otherwise, drop the message.</div><div class="gmail_extra"><br></div><div class="gmail_extra">Regards,</div><div class="gmail_extra">Ali Pey</div><div class="gmail_extra"><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Dec 31, 2014 at 1:30 PM, Duane Larson <span dir="ltr"><<a href="mailto:duane.larson@gmail.com" target="_blank">duane.larson@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">My logic saves the user that is registering into the location table without challenging them for a password or checking that the user or domain is local to the OpenSIPs instance. If you are looking for something more you might want to provide more detail.<div><br></div><div>This would allow fake accounts to register if they are from a friendly IP.<div><div class="h5"><span></span><br><br>On Wednesday, December 31, 2014, Satish Patel <<a href="mailto:satish.txt@gmail.com" target="_blank">satish.txt@gmail.com</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">How it will help if i want to allow only IP auth for specific user but not registration auth? How your logic deal with User level?<div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Dec 31, 2014 at 12:22 PM, Duane Larson <span dir="ltr"><<a>duane.larson@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Would you not just do something like this?<div><br></div><div>If(FriendlyIP && is_method("REGISTER"))</div><div>{</div><div><div> if (t_newtran()) {</div><div> save("location");</div><div> }</div><div><br></div><div> exit;</div></div><div>}</div></div><div class="gmail_extra"><br><div class="gmail_quote"><div><div>On Wed, Dec 31, 2014 at 10:22 AM, Satish Patel <span dir="ltr"><<a>satish.txt@gmail.com</a>></span> wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div><div dir="ltr">Hi,<div><br></div><div>We have many users using both registration method and IP auth method to send calls but i wants if they use IP Auth method then we can disable registration method ( just prevention from hacking attack). </div><div><br></div><div>I believe registration is only required for incoming calls to find user location, right? How do i tell opensips don't accept user registration method even opensips challenge for proxy auth. any suggestion? </div></div>
<br></div></div>_______________________________________________<br>
Users mailing list<br>
<a>Users@lists.opensips.org</a><br>
<a href="https://contactmonkey.com/api/v1/tracker?cm_session=2fbf233d-c6f2-4110-af3e-5cf568144048&cm_type=link&cm_link=fe5ffb6c-5456-4123-ac5e-ec6209f257ac&cm_destination=http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
<br></blockquote></div><br></div>
<br>_______________________________________________<br>
Users mailing list<br>
<a>Users@lists.opensips.org</a><br>
<a href="https://contactmonkey.com/api/v1/tracker?cm_session=2fbf233d-c6f2-4110-af3e-5cf568144048&cm_type=link&cm_link=b28e5084-e043-4bf9-916b-9dab1b052364&cm_destination=http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
<br></blockquote></div><br></div>
</blockquote></div></div></div>
<br>_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org">Users@lists.opensips.org</a><br>
<a href="https://contactmonkey.com/api/v1/tracker?cm_session=2fbf233d-c6f2-4110-af3e-5cf568144048&cm_type=link&cm_link=923b7e39-fb38-4de5-8d98-57ed954673a8&cm_destination=http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
<br></blockquote></div><br></div><img class="cm-tracker" src="https://contactmonkey.com/api/v1/tracker?cm_session=2fbf233d-c6f2-4110-af3e-5cf568144048&cm_type=open&cm_user_email=alipey@gmail.com" width="0" height="0" style="border:0; width:0px; height:0px;"><img class="cm-tracker" src="https://contactmonkey.com/api/v1/tracker?cm_session=2fbf233d-c6f2-4110-af3e-5cf568144048&cm_type=open&cm_user_email=alipey@gmail.com" width="0" height="0" style="border:0; width:0px; height:0px;"><font class="cm-tracker" face="https://contactmonkey.com/api/v1/tracker?cm_session=2fbf233d-c6f2-4110-af3e-5cf568144048&cm_type=open&cm_user_email=alipey@gmail.com" style></font></div>