Hi everyone, I have been playing all morning with failregex lines inside /etc/fail2ban/filter.d/asterisk.conf but I am not able to make it work. Something seems to be missing or not parsing right.
This is the line I get in /var/log/asterisk/full: chan_sip.c: Sending fake auth rejection for device Eyebeam-Softphone<sip:99998@*192.168.20.111*>;tag=9d50452f I tried the following line for the failregex but it doesn't seem to work. I think the special symbols like < > ; or even = sign might be getting in the way. chan_sip.c: Sending fake auth rejection for device Eyebeam-Softphone<.*@* <HOST>*>;.* Anyone familiar with this can tell me what the right failregex format should be? Or is there a way to debug this? P.S. This type of log is generated by Asterisk 1.8.9.1 when there is a peer-to-peer calling with allowguest set to NO. Thanks,
