[asterisk-users] On Register, run a script, validate source IP

Wed Nov 20 03:00:03 CST 2019

Hello,

Have you tried with ACL (acl.conf) ?

Cheers

Le lun. 18 nov. 2019 à 13:22, Benoit Panizzon <benoit.panizzon at imp.ch> a
écrit :

> Hi Gang
>
> To increase security against phished passwords and similar attacks, we
> consider offering customers to define IP ranges (or GeoIP locations)
> from which their dynamic registrations are being accepted.
>
> I can already look at the source IP in the dial plan, so no issue with
> validate an INVITE against a source IP.
>
> But I would also like to prevent registrations from outside of this
> client's specific allowed ip addresses as well, so the line cannot be
> hijacked.
>
> So I'm looking for something like
>
> On Register:
> If check_allowed_ip(auth_username) {
>         return;
> } else {
>         Reply(403 Wrong IP for this user);
> }
>
> Any ideas how to do that? (Yes, I asked Google and found nothing
> useful yet)
>
> Mit freundlichen Grüssen
>
> -Benoît Panizzon-
> --
> I m p r o W a r e   A G    -    Leiter Commerce Kunden
> ______________________________________________________
>
> Zurlindenstrasse 29             Tel  +41 61 826 93 00
> CH-4133 Pratteln                Fax  +41 61 826 93 01
> Schweiz                         Web  http://www.imp.ch
> ______________________________________________________
>
> --
> _____________________________________________________________________
> -- Bandwidth and Colocation Provided by http://www.api-digital.com --
>
> Check out the new Asterisk community forum at:
> https://community.asterisk.org/
>
> New to Asterisk? Start here:
>       https://wiki.asterisk.org/wiki/display/AST/Getting+Started
>
> asterisk-users mailing list
> To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20191120/0fc3cb15/attachment.html>