Browse Source

Change jail for asterisk, add support for SIP and SIP-TLS on TCP and UDP ports

pull/28/head
Xavier Devlamynck 13 years ago
parent
commit
df0e0fdc07
  1. 14
      config/jail.conf

14
config/jail.conf

@ -254,10 +254,18 @@ action = iptables-multiport[name=Named, port="domain,953", protocol=tcp]
logpath = /var/log/named/security.log logpath = /var/log/named/security.log
ignoreip = 168.192.0.1 ignoreip = 168.192.0.1
[asterisk] [asterisk-tcp]
enabled = true enabled = true
filter = asterisk filter = asterisk
action = iptables-multiport[name=Asterisk, port="5060", protocol="tcp,udp"] action = iptables-multiport[name=asterisk-tcp, port="5060,5061", protocol=tcp]
sendmail-whois[name=Asterisk, dest=you@example.com, sender=fail2ban@example.com] sendmail-whois[name=Asterisk, dest=you@example.com, sender=fail2ban@example.com]
logpath = /var/log/asterisk/messages logpath = /var/log/asterisk/messages
maxretry = 5 maxretry = 10
[asterisk-udp]
enabled = true
filter = asterisk
action = iptables-multiport[name=asterisk-udp, port="5060,5061", protocol=udp]
sendmail-whois[name=Asterisk, dest=you@example.com, sender=fail2ban@example.com]
logpath = /var/log/asterisk/messages
maxretry = 10

Loading…
Cancel
Save