[asterisk-users] SIP Blacklisting
David F Newman
dfn at MIT.EDU
Thu Oct 21 11:24:33 CDT 2010
On 10/21/10 12:07 PM, "Steve Howes" <steve-lists at geekinter.net> wrote:
>
>On 21 Oct 2010, at 16:54, Jeff LaCoursiere wrote:
>> I'll subscribe, that is for sure. What is the best way to dist the
>> blacklist? iptables include file? Or something more integrated to
>> asterisk... just thinking off the top of my head that a module that
>>vetted
>> inbound connections against an external list would be a very cool thing.
>
>I was thinking some sort of script to pull via HTTP to update whatever
>you wanted (output as iptables etc). I know its not an instant 'lookup',
>but an hour delay between updates is nothing. Also means whoever is
>running the server isn't getting hammered by everyone ;) Realtime lookups
>from Asterisk would be quite a load (and would introduce latency).
>
I would think DNS would be the best way. Querying it in real shouldn't be
a problem and the zone could be replicated to a local server if need be.
-Dave
More information about the asterisk-users
mailing list