On Thu, Oct 13, 2011 at 9:19 AM, Gerald Drouillard <[email protected]>wrote:
> On 10/13/2011 9:13 AM, Tony Graziano wrote: > > Well said. Whether sipx has the functionality to auto block an ip for > > a specified period or not depends on getting that functionality > > internally. > > > > "If" the ip addresses are logged into a file, a remote firewall can > > potentially harvest them, and when/if sipx has these functionalities, > > it could also. It would be nice to have an alarm (that an admin can > > alter), but also have a log file(s) with the current banned IP > > addresses and an archive of the log file with the IP address and the > > failed attempts that are date/timestamped, probably comma delimited or > > xml so these can be parsed, reported and harvested for other security > > uses internally. > > > > It would also be nice to be able to specify these files locations on a > > remote server. > I am not sure if you need a remote server to handle the security. The > linux running on phone server is as strong as the linux running on your > firewall. ;-) > > The original discussion I recall was being able to collect the data and make it usable by any method. If the server is behind a firewall, a lot of people prefer to stop the ilk from ever reaching sipx, no matter your firewall configuration on sipx itself.
_______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
