Monday , January 20 2020
Home / Trainings / VoIP / Asterisk Server Security – SIP security

Asterisk Server Security – SIP security

Last updated on February 27th, 2018 at 06:16 pm

If your SIP server is exposed to internet. Then you need to take some measure even if you have fail2ban installed. Fail2Ban keep track of the logs while blocking the attacks and some of the attacks might occur while fail2ban start jump into it.

Following are the Tools used for that;

  1. sipsak
  2. sipvicious
  3. iWar
  4. sip-scan
  5. sipcli
  6. friendly-scanner
  7. VaxSIPUserAgent
  8. sundayddr

you can block these attacks by using IP Tables. Following is the example for one the attack to block;

iptables -I INPUT -j DROP -p udp –dport 5060 -m stringstring "sip-scan" –algo bm

Ref: Haroon Javed

About M H N

Leave a Reply

Your email address will not be published. Required fields are marked *

6 − four =