You can use dns name as SIP realm.
Then you can silencly drop messages that contains IP address to From/To
field
Example
https://github.com/2600hz/kazoo-configs-kamailio/blob/master/kamailio/traffic-filter-role.cfg
вт, 10 окт. 2017 г., 13:36 Daniel-Constantin Mierla :
>
Hello,
On 09.10.17 12:17, Mark Boyce wrote:
> Hi Daniel,
>
> Thanks, I see tcpops lets us set the lifetime … although it’s not really the
> length of the lifetime that concerns me.
>
> I guess I’m thinking more a SIP TCP Firewall type of system. If someone is
> scanning/ddos/etc I don’t
Hi Daniel,
Thanks, I see tcpops lets us set the lifetime … although it’s not really the
length of the lifetime that concerns me.
I guess I’m thinking more a SIP TCP Firewall type of system. If someone is
scanning/ddos/etc I don’t think we should be sending a response at all, unless
there’s
Hello,
tcpops module offers a function to set the lifetime of a tcp connection,
so you can set it to 1 second:
-https://www.kamailio.org/docs/modules/stable/modules/tcpops.html
Core offers a function to instruct closing the connection once a reply
has been sent, but it seems you don't want to
Hi all
Just working on some connections security filters on a Kamailio install. The
security goes something like this;
In REQINT … if source_ip is not in customers IP white-list then just exit
This works fine for UDP where packets are just ignored if they don’t come from
a trusted IP.