View previous topic :: View next topic |
Author |
Message |
xcellula at gmail.com Guest
|
Posted: Fri Aug 22, 2008 12:22 am Post subject: [Freeswitch-users] SBC Abilities |
|
|
Hello,
Looking at the website shows that FS can act as a SBC but i haven't
found any page on the wiki that goes over the ability that an SBC can
handle when it comes to DoS like behavior such as to rate limit per IP
or automatic blacklist based on too many registers/request storms.
Is this possible with FS at the moment?
thanks,
eric clope
_______________________________________________
Freeswitch-users mailing list
Freeswitch-users@lists.freeswitch.org
http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
http://www.freeswitch.org |
|
Back to top |
|
|
anthony.minessale at g... Guest
|
Posted: Fri Aug 22, 2008 11:34 am Post subject: [Freeswitch-users] SBC Abilities |
|
|
We have global rate limit and ACL but not rate limit per IP.
We don't have any automatic blacklist but it's a good idea.
On Thu, Aug 21, 2008 at 11:22 PM, eric c <xcellula@gmail.com (xcellula@gmail.com)> wrote:
--
Anthony Minessale II
FreeSWITCH http://www.freeswitch.org/
ClueCon http://www.cluecon.com/
AIM: anthm
MSN:anthony_minessale@hotmail.com ([email]MSN%3Aanthony_minessale@hotmail.com[/email])
GTALK/JABBER/PAYPAL:anthony.minessale@gmail.com ([email]PAYPAL%3Aanthony.minessale@gmail.com[/email])
IRC: irc.freenode.net #freeswitch
FreeSWITCH Developer Conference
sip:888@conference.freeswitch.org ([email]sip%3A888@conference.freeswitch.org[/email])
iax:guest@conference.freeswitch.org/888
googletalk:conf+888@conference.freeswitch.org ([email]googletalk%3Aconf%2B888@conference.freeswitch.org[/email])
pstn:213-799-1400 |
|
Back to top |
|
|
xcellula at gmail.com Guest
|
Posted: Mon Aug 25, 2008 1:04 am Post subject: [Freeswitch-users] SBC Abilities |
|
|
Quote: | We have global rate limit and ACL but not rate limit per IP.
We don't have any automatic blacklist but it's a good idea.
|
That would definitely be a good idea; especially for not necessarily
malicious users; what about bad IADs in the field.
Also, testing out things with rfc4475 (SIP Torture Test)
http://tools.ietf.org/html/rfc4475
Also, any testing with tools such as:
voiper (http://voiper.sourceforge.net/)
INVITE Flooder (http://www.hackingvoip.com/sec_tools.html)
SipBomber (http://www.metalinkltd.com/downloads.php)
I understand that people are placing FS on a protected network but if
it's going to face the internet as an SBC, it should at least be
fortified to handle the beating.
thanks for your time and great work,
eric clope
_______________________________________________
Freeswitch-users mailing list
Freeswitch-users@lists.freeswitch.org
http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
http://www.freeswitch.org |
|
Back to top |
|
|
|