[asterisk-users] Wired attack on Asterisk - Can anyone explain this?
Bruce B
bruceb444 at gmail.com
Mon Jan 2 13:57:41 CST 2012
Hello,
Can anyone explain what this attack was trying to do? *19.19.19.19 *is my
server IP and it seems that they are trying to use my server IP to initiate
a SIP call to 199.16.208.29 or 199.16.208.30. Is that so?
*Call Date Channel Source CLID
DST
Disposition Duration * 10/4/2011 19:58 SIP/19,19,19,19-0000061f
111222 199.16.208.29 199.16.208.30 <111222> s ANSWERED 3 10/4/2011 19:58
SIP/19,19,19,19-0000061f 111222 199.16.208.29 199.16.208.30
<111222> s ANSWERED 3 10/4/2011 19:58 SIP/19,19,19,19-00000620 101
199.16.208.29
199.16.208.30 <101> s ANSWERED 2 10/4/2011 19:58
SIP/19,19,19,19-00000620 101 199.16.208.29 199.16.208.30 <101>
s ANSWERED 2 10/4/2011 19:58 SIP/19,19,19,19-00000621 1001 199.16.208.29
199.16.208.30 <1001> s ANSWERED 1 10/4/2011 19:58
SIP/19,19,19,19-00000621 1001 199.16.208.29 199.16.208.30 <1001> s
ANSWERED 1 10/4/2011 19:59 SIP/19,19,19,19-00000622 200 199.16.208.29
199.16.208.30 <200> s ANSWERED 1
Thanks,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20120102/b2628ab4/attachment.htm>
More information about the asterisk-users
mailing list