Yes, I could try and get the ip range from the itsp but I know they use re-invited to select different upstream providers.
It would seem there should be a way to require authentication for the inbound call. I dial plan in reverse. I'm not saying to require authorization before the invite, I'm saying the invite would be challenged to see if the call should be accepted as only a registered phone. I realize you wound't want to authorized all sip but when port 5060 is used by registered phones and registered remote workers (internet calling is disabled), it would seem that when a invite is received sipx could respond with a "not authorized" and have the invite resent with authentication. This is how all outbound calls to itsp or sip uri are handled now because they are authorized by dial plans. sounds like a jira request to me ;-) -M >>> Tony Graziano <[email protected]> 08/07/10 8:37 AM >>> No. It's a sip call. That's perfectly normal. ANY sip call from the Internet to a user on the system would not be requiring permissions or even to pass through a gateway. Only outgoing calls do that.? Probably a sipvicious variant. If your system is setup properly I'm not sure I would worry.?If you don't want to it to that you can consider blocking measures at your firewall. ?There is NO way to prevent this altogether as it is byproduct of the protocol. You can't have an email system available to the internet without it saying hello. You cannot have a sip server on the internet trying to reach a user AND ask for credentials, because then noone gets to say hello. </[email protected]>
_______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
