[AsteriskBrasil] Capture estranho !!!

LUIS CARLOS FIDALGO luisfidafer em gmail.com
Sexta Abril 15 15:54:54 BRT 2016 

Boa tarde galera,

Coloquei um asterisk  para á internet hoje ja configurado com o Fail2ban e
funcionando perfeitamente, pois ele bloqueou automaticamente esse ip abaixo,
conforme abaixo;

 

Chain f2b-ASTERISK (1 references)

pkts bytes target     prot opt in     out     source
destination

22 13332 REJECT     all  --  *      *       187.255.102.6        0.0.0.0/0
reject-with icmp-port-unreachable

1956  143K RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0

 

Mas ainda continua sem parar subir no log que está chegando na eth0

Algo para me preocupar ou não?

 

# tshark -R sip -i any

 

Capturing on 'any'

  2 1.147904295 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

  7 2.148036600 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

15 3.148155394 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

18 4.148274464 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

25 5.148394374 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

30 15.149073577 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

33 16.149201251 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

36 17.149317249 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

39 18.149430378 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

42 19.149553888 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

47 21.770164553 89.163.146.192 -> 192.168.0.220 SIP/SDP 815 Request: INVITE
sip:0887500972597984096 at 187.255.102.6 |

56 29.284380554 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

59 30.284526828 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

63 31.284644003 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

66 32.283910320 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

69 33.285022960 192.168.0.220 -> 187.255.102.6 SIP 652 Request: OPTIONS
sip:2011 at 187.255.102.6:9302;rinstance=b9e805e61698e7fa |

 

 

 

Grato,

 

 

Luis Carlos

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://asteriskbrasil.org/pipermail/asteriskbrasil/attachments/20160415/457b4b89/attachment.html>

Mais detalhes sobre a lista de discussão AsteriskBrasil