On 05/18/2011 12:59 PM, J. Oquendo wrote:
On 5/18/2011 12:46 PM, Alex Balashov wrote:
Ghetto, but goes a long way in helping harden individual Asterisk servers on which one has no choice but to leave the SIP call agent open to the public Internet:
http://www.infiltrated.net/scripts/moreghetto.txt
You could also use the VABL to block known idiots:
wget -qO - www.infiltrated.net/vabl.txt | awk '{print "iptables -A INPUT -s "$1" -j DROP" |"sort"}' | uniq | sh
Indeed. I'm a huge fan of http://countries.nerd.dk as a place to get a list of all non-ARIN net block assignments and firewalling those off. -- Alex Balashov - Principal Evariste Systems LLC 260 Peachtree Street NW Suite 2200 Atlanta, GA 30303 Tel: +1-678-954-0670 Fax: +1-404-961-1892 Web: http://www.evaristesys.com/