<div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div style="font-size:10pt;font-family:Arial"><blockquote style="padding-left:5px;font-size:12pt;font-style:normal;margin-left:5px;font-family:Helvetica,Arial,sans-serif;text-decoration:none;font-weight:normal;border-left:2px solid rgb(16,16,255)">
<div><div class="gmail_quote"><div>I also checked res_security_log and the module is loaded but it doesn't add ANY whatsoever logs in Asterisk 1.8. Is that an incomplete module?</div><div> <br></div></div></div>
</blockquote>Like Paul stated, support for logging security events in chan_sip was added in Asterisk 10. In Asterisk 1.8, I think only AMI security events are logged. Also, make sure that you enable it in logger.conf. The security events will be contained in a separate log file.<br>
<br></div></div></blockquote><div><br></div><div>Thanks Michael. For the sake of testing I installed Asterisk 10.1.2 and I have res_security_log.so loaded and I have this line in logger.conf as per directions:</div><div>
<br></div><div>security => security</div><div><br></div><div>However, there are NO LOGS generated in this file. The best I can see from Asterisk is this:</div><div><b><i>[Feb 13 09:46:21] NOTICE[14762]: chan_sip.c:22906 handle_request_invite: Sending fake auth rejection for device "Anonymous" <sip:Anonymous@anonymous.invalid>;tag=as55ac8bb5</i></b></div>
<div><br></div><div>To conclude, res_security_log does NOT log anything so far. CDRs do not include the source IP address and Asterisk doesn't mention the source IP no where in Asterisk 1.8 or 10.x. Am I missing something? Have you tested this yourself?</div>
<div><br></div><div>Regards,</div><div><br></div><div><br></div>
</div>