Hi!
Anyone that have tried using Asterisk 11 with SIP + Confbridge as a
VMware virtual machine? Any issues to be aware of?
Of course the hardware node needs to to be powerful enough - but say you
have just one virtual machine on the node - will the performance be
drastically less than
2014-04-03 18:58, Gopalakrishnan N skrev:
Hi,
Anybody using PAGI scripts,
http://marcelog.github.io/articles/pagi_tutorial_create_voip_telephony_application_for_asterisk_with_agi_and_php.html
Would like to know the feasibility to build a IVR solutions.
Regards
I use PAMI, and it works
Hello All, my asterisk server is constantly under attack
[Apr 4 06:56:00] NOTICE[21745]: chan_sip.c:25673 handle_request_register:
Registration from '4941 sip:4941@public_ip' failed for '194.100.46.132
194.100.46.132:56714' - Wrong password
[Apr 4 06:56:00] NOTICE[21745]: chan_sip.c:25673
I don't know what platform you are on, but if you are on Linux (and
possibly BSD) you could use fail2ban to block them at the network
interface.
On 04/04/2014 09:00 AM, motty cruz wrote:
Hello All, my asterisk server is constantly under attack
[Apr 4 06:56:00] NOTICE[21745]:
On 4 April 2014 15:00, motty cruz motty.c...@gmail.com wrote:
Hello All, my asterisk server is constantly under attack
Unfortunately you are not alone.
[Apr 4 06:56:00] NOTICE[21745]: chan_sip.c:25673 handle_request_register:
Registration from '4941 sip:4941@public_ip' failed for
On Fri, Apr 4, 2014 at 10:05 AM, Daniel Taylor dtay...@vocalabs.com wrote:
I don't know what platform you are on, but if you are on Linux (and
possibly BSD) you could use fail2ban to block them at the network
interface.
I second fail2ban. If you need some ideas to configure it, you
thank you all for your support. I am using Linux, I only have about 7 users
outside our home network. I will learn fail2ban and will use it
accordingly.
again Thanks for your support.
On Fri, Apr 4, 2014 at 7:09 AM, Mauricio Tavares raubvo...@gmail.comwrote:
On Fri, Apr 4, 2014 at 10:05
Take a look a SecAst from www.generationd.comhttp://www.generationd.com/
It does everything fail2ban does and more, including blocking users by
geography (we exclude all of Asia and Africa), detection of break-in patterns
(even if someone guessed your un/pw), detect changes in dial rates, etc.
On Friday 04 Apr 2014, Michelle Dupuis wrote:
Take a look a SecAst from www.generationd.comhttp://www.generationd.com/
It does everything fail2ban does and more, including blocking users by
geography (we exclude all of Asia and Africa), detection of break-in
patterns (even if someone guessed
What you are saying is only open source software is safe? You have just
excluded most software in use in the business world.
We have installed Norton antivirus on all of our workstation; I don't think
Symantec will ever release the source code (since that would also show
attackers how to get
absolutely right A J, thanks for the heads up.
I do not intent to implement that solution in production server, I hope to
learn it first, build a test server and monitor for a few days or weeks.
Thanks again,
On Fri, Apr 4, 2014 at 7:38 AM, A J Stiles asterisk_l...@earthshod.co.ukwrote:
On
On 4 April 2014 15:22, motty cruz motty.c...@gmail.com wrote:
thank you all for your support. I am using Linux, I only have about 7
users outside our home network. I will learn fail2ban and will use it
accordingly.
again Thanks for your support.
Do the 7 users outside of your home
Ok, I think I am 90%+ there.
Note: the configuration or status is the same on both sides unless
otherwise noted.
I am using RSA keys for authentication and the calls are coming through as
authenticated so I'm sure that part works.
The peer shows the (E) next to the status in Asterisk Info for
Hello Ishfaq, outside users usually travel around the country and connect
from different network, so it won't be possible to lock it down to specific
IP.
Thanks for your support.
On Fri, Apr 4, 2014 at 8:03 AM, Ishfaq Malik i...@pack-net.co.uk wrote:
On 4 April 2014 15:22, motty cruz
Well in that case fail2ban gets my vote.
On 4 April 2014 16:15, motty cruz motty.c...@gmail.com wrote:
Hello Ishfaq, outside users usually travel around the country and connect
from different network, so it won't be possible to lock it down to specific
IP.
Thanks for your support.
On
If you know your users are all from with your country, or state, or even city,
you could restrict geographic access in your secast.conf file like this:
ruledefault=deny
ruleexceptions=NA:CA:Ontario:|NA:US:Michigan:Detroit|::Ohio:|NA
The above would:
- By default deny all source IP's anywhere
Use allowguest=no
And define ACLs for every SIP account.
And obviously, fail2ban for blocking suspicious IPs.
--
_
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
New to Asterisk? Join us for a live
that sounds feasible, Thanks Michelle,
On Fri, Apr 4, 2014 at 8:25 AM, Michelle Dupuis mdup...@ocg.ca wrote:
If you know your users are all from with your country, or state, or even
city, you could restrict geographic access in your secast.conf file like
this:
ruledefault=deny
Shouldn't the secast discussion be on the commercial list?
Note that their free version works for five simultaneous calls-then the
price goes 'way up.
--Don
(Top posting 'cause that's what's already being done.)
From: asterisk-users-boun...@lists.digium.com
I have found Asterisk using only SIP is very responsive on virtual
machines. We have used VMs for call center applications and for complex
IVR solutions without problems. Obviously there is overhead running a
VM so you can never expect a VM to perform as well as bare metal.
Running a
Wireshark.
On Fri, Apr 4, 2014 at 11:13 AM, Elliott W dig...@private-address.infowrote:
Ok, I think I am 90%+ there.
Note: the configuration or status is the same on both sides unless
otherwise noted.
I am using RSA keys for authentication and the calls are coming through as
IMHO: If you're announcing a product, selling a product, etc. it belongs on the
commercial list. If you're asking/answering questions about Asterisk and the
ecosystem I think you can mention commercial products too. (We don't want to
pretend they don't exist, and then steer users to only
2014-04-04 19:30, Carlos Chavez skrev:
I have found Asterisk using only SIP is very responsive on virtual
machines. We have used VMs for call center applications and for complex
IVR solutions without problems. Obviously there is overhead running a
VM so you can never expect a VM to
2014-04-04 19:30, Carlos Chavez skrev:
I have found Asterisk using only SIP is very responsive on virtual
machines. We have used VMs for call center applications and for complex
IVR solutions without problems. Obviously there is overhead running a
VM so you can never expect a VM to
On Fri, Apr 4, 2014 at 1:30 PM, Carlos Chavez cur...@telecomabmex.com wrote:
I have found Asterisk using only SIP is very responsive on virtual
machines. We have used VMs for call center applications and for complex IVR
solutions without problems. Obviously there is overhead running a VM
From: Johan Wilfer li...@jttech.se
Sounds very good. Do you have this experience with WMware in particular
or with virtualization in general?
We run our Asterisk 11 instance in VMWare as well. They share the hardware
with multiple other boxes. We do give Asterisk priority over most other
2014-04-04 21:35, Kevin Larsen skrev:
From: Johan Wilfer li...@jttech.se
Sounds very good. Do you have this experience with WMware in particular
or with virtualization in general?
We run our Asterisk 11 instance in VMWare as well. They share the
hardware with multiple other boxes. We do
Hi,
I'm doing an evaluation of Confbridge (migrating from Meetme). Looking
at: https://wiki.asterisk.org/wiki/display/AST/ConfBridge+10
Under the heading User Profile Configuration Options the option
announce_only_user is present. The sample config looks like this:
--
;announce_only_user=yes
2014-04-04 22:01, Johan Wilfer skrev:
Hi,
I'm doing an evaluation of Confbridge (migrating from Meetme). Looking
at: https://wiki.asterisk.org/wiki/display/AST/ConfBridge+10
Under the heading User Profile Configuration Options the option
announce_only_user is present. The sample config looks
2014-04-04 23:33, Johan Wilfer skrev:
Also - setting quiet=yes still plays join/leave sound. My current
work-around is:
sound_join=silence/1
sound_leave=silence/1
But this seems a bit ineffective... In Meetme the quiet-flag also
disabled join/leave sounds. Is this by design or an oversight?
That answered my question as to whether it WAS encrypted, I think, and the
answer is no, the credentials are but all the rest is not. That just
leaves the question of what I need to do to get it encrypted..
Thanks.
On Fri, Apr 4, 2014 at 12:59 PM, Steve Totaro
stot...@totarotechnologies.com
Have you enabled IAX2 debugging and tried some test calls?
Thanks,
Steve T
On Fri, Apr 4, 2014 at 6:59 PM, Elliott W dig...@private-address.infowrote:
That answered my question as to whether it WAS encrypted, I think, and the
answer is no, the credentials are but all the rest is not. That
32 matches
Mail list logo
