Nedi,
There are numerous ways to accomplish this, and all could be done via the
Asterisk dialplan. Which method you chose comes down to what your
individual needs are.
If you don't need to call Internationally at all, you could simply block
011x. from being processed. You would also need to block all the NANP
International area codes (ie: Bermuda, the Caribbean, Canada, etc.).
If you only need to allow calls to certain countries, say UK, you could
provide dialplan instructions to only process those specific country codes
(ie: 01144x.).
If you only wanted to provide certain extensions with all or limited
International dialing capabilities, you could create a separate context and
only include it for those extensions.
You could also enable/require an authentication code that had to be dialed
to process any International calls. You could further configure it to block
multiple failed attempts and trigger an alert if this happened.
The vast majority of fraudulent calls comes from a misconfigured PBX that
permits unauthenticated calling from external hosts, or has externally
vulnerable accounts with bad passwords/secrets that can be brute forced.
Securing your system properly would eliminate most of this risk. Adding
further dial-plan to block systems that are scanning your PBX for
weaknesses (ie: weak accounts or weak dialplan) could further help mitigate
successful attacks. The built in Astlinux Firewall can block account
scanning, and some earlier discussed dialplan snippits can be used for
unauthenticated call requests (by putting it in your default context). If
you don't need to process inbound calls from non-trunks, you could simply
block this across the board. Lastly, you could apply more stringent ACLs to
block traffic from any but specified IPs.
-James
On Thu, May 31, 2012 at 7:31 AM, Nedi <[email protected]> wrote:
>
> Hi,
> has someone goot solution to protect astlinux Asterisk from fraud?
> Is there a secure way to block some destination/Countries and protect
> asterisk from Fraud’
> regards Nedi
>
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> _______________________________________________
> Astlinux-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/astlinux-users
>
> Donations to support AstLinux are graciously accepted via PayPal to
> [email protected].
>
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Astlinux-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/astlinux-users
Donations to support AstLinux are graciously accepted via PayPal to
[email protected].
