Cursos Asterisk en México

Consulta tecnica

Colapsar

Anuncio

Colapsar
No hay anuncio todavía.
X
Colapsar
 
  • Página de 1
  • Filtrar
  • Tiempo
  • Mostrar
Limpiar Todo
nuevos mensajes
Anterior template Próximo
  • #1

    Consulta tecnica

    Por cuestiones de seguridad tengo instalado desde vario meses el fail2ban y estaba bloqueando temporalmente las ip
    pero hoy revisando el log detecto que la misma dirección a tratado del vulnerar el sistema

    pero en tecleando iptables -L

    Chain fail2ban-ASTERISK (1 references)
    target prot opt source destination
    DROP all -- dsl-187-198-73-41-dyn.prod-infinitum.com.mx anywhere
    RETURN all -- anywhere anywhere





    [2013-06-07 08:12:19] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 120<sip:120@187.198.73.41>;tag=7cd39ef6
    [2013-06-07 08:12:20] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 120<sip:120@187.198.73.41>;tag=1594a651
    [2013-06-07 08:12:20] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 120<sip:120@187.198.73.41>;tag=1594a651
    [2013-06-07 08:12:21] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 120<sip:120@187.198.73.41>;tag=175b09e6
    [2013-06-07 08:12:22] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 120<sip:120@187.198.73.41>;tag=175b09e6
    [2013-06-07 08:25:24] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=ab85e965
    [2013-06-07 08:25:25] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=ab85e965
    [2013-06-07 08:25:28] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=4fe5d1b1
    [2013-06-07 08:25:28] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=4fe5d1b1
    [2013-06-07 08:25:33] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=996b0aba
    [2013-06-07 08:25:33] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=996b0aba
    [2013-06-07 08:25:36] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=04651312
    [2013-06-07 08:25:36] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=04651312
    [2013-06-07 08:25:37] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 401<sip:401@187.198.73.41>;tag=04651312
    [2013-06-07 09:23:15] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=83dad466
    [2013-06-07 09:23:16] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=83dad466
    [2013-06-07 09:23:16] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=83dad466
    [2013-06-07 09:23:18] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=3ad8cf38
    [2013-06-07 09:23:19] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=3ad8cf38
    [2013-06-07 09:23:20] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=3ad8cf38
    [2013-06-07 09:23:23] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=b70579b4
    [2013-06-07 09:23:24] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=b70579b4
    [2013-06-07 09:23:24] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=b70579b4
    [2013-06-07 09:23:27] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=1d59e496
    [2013-06-07 09:23:28] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 700<sip:700@187.198.73.41>;tag=1d59e496
    [2013-06-07 09:40:47] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=2a47120e
    [2013-06-07 09:40:48] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=2a47120e
    [2013-06-07 09:40:48] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=af7306a3
    [2013-06-07 09:40:48] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=af7306a3
    [2013-06-07 09:40:49] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=8ac55b75
    [2013-06-07 09:40:49] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=8ac55b75
    [2013-06-07 09:40:50] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=91297bbf
    [2013-06-07 09:40:50] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=91297bbf
    [2013-06-07 09:40:51] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=41fde36d
    [2013-06-07 09:40:51] NOTICE[25661] chan_sip.c: Sending fake auth rejection for device 200<sip:200@187.198.73.41>;tag=41fde36d
    [2013-06-07 10:22:37] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=e80eb9cc
    [2013-06-07 10:22:38] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=e80eb9cc
    [2013-06-07 10:22:38] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=e80eb9cc
    [2013-06-07 10:22:42] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=94391746
    [2013-06-07 10:22:43] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=94391746
    [2013-06-07 10:22:44] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=94391746
    [2013-06-07 10:22:47] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=e7df8784
    [2013-06-07 10:22:48] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=e7df8784
    [2013-06-07 10:22:49] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=e7df8784
    [2013-06-07 10:22:50] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=989fb44a
    [2013-06-07 10:22:51] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=989fb44a
    [2013-06-07 10:22:51] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 11<sip:11@187.198.73.41>;tag=989fb44a
    [2013-06-07 11:08:05] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=9b8f8318
    [2013-06-07 11:08:05] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=9b8f8318
    [2013-06-07 11:08:06] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=3b8e95d8
    [2013-06-07 11:08:06] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=3b8e95d8
    [2013-06-07 11:08:07] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=d29c6bdd
    [2013-06-07 11:08:07] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=d29c6bdd
    [2013-06-07 11:08:08] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=b2074a5c
    [2013-06-07 11:08:08] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=b2074a5c
    [2013-06-07 11:08:09] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=c95995b9
    [2013-06-07 11:08:09] NOTICE[27487] chan_sip.c: Sending fake auth rejection for device 201<sip:201@187.198.73.41>;tag=c95995b9


    Y no se que pase no los bloquea y el fail2ban había funcionado bien
    Etiquetas: Ninguno
  • #2
    utiliza la dirección IP en vez del nombre.... y probablemente encuentres mas ayuda en foros específicamente del fail2ban o iptables
    Hector Alvarez
    dCAP Certified #2199
    http://mx.linkedin.com/in/alvarezhector/

    Comentario

    Anterior template Próximo

    Principales Usuarios Activos

    Colapsar
    No hay usuarios activos superiores.
    Trabajando...
    X