Hello,
Can anyone explain what this attack was trying to do? *19.19.19.19 *is my
server IP and it seems that they are trying to use my server IP to initiate
a SIP call to 199.16.208.29 or 199.16.208.30. Is that so?
*Call Date Channel Source CLID
DST
Disposition Duration * 10/4/2011 19:58 SIP/19,19,19,19-0000061f
111222 199.16.208.29 199.16.208.30 <111222> s ANSWERED 3 10/4/2011 19:58
SIP/19,19,19,19-0000061f 111222 199.16.208.29 199.16.208.30
<111222> s ANSWERED 3 10/4/2011 19:58 SIP/19,19,19,19-00000620 101
199.16.208.29
199.16.208.30 <101> s ANSWERED 2 10/4/2011 19:58
SIP/19,19,19,19-00000620 101 199.16.208.29 199.16.208.30 <101>
s ANSWERED 2 10/4/2011 19:58 SIP/19,19,19,19-00000621 1001 199.16.208.29
199.16.208.30 <1001> s ANSWERED 1 10/4/2011 19:58
SIP/19,19,19,19-00000621 1001 199.16.208.29 199.16.208.30 <1001> s
ANSWERED 1 10/4/2011 19:59 SIP/19,19,19,19-00000622 200 199.16.208.29
199.16.208.30 <200> s ANSWERED 1
Thanks,
--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
New to Asterisk? Join us for a live introductory webinar every Thurs:
http://www.asterisk.org/hello
asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/asterisk-users
