Please allow IP range in X_Access List to stop SIP Scanners

(1/4) > >>

flex25:
Please allow Service Providers->ITSP Profile A/B->SIP->X_AccessList to accept a range of IP addresses, not only individual IP addresses separated by commas.  I use Callcentric as SP1, and their range of IP addresses is 204.11.192.0/22 or 204.11.192.0 - 204.11.195.255.  To enter that large range as individual IP addresses in Service Providers->ITSP Profile A/B->SIP->X_AccessList would require hundreds of individual entries, separated by commas.

I have already received two SIP scanner attack attempts over SP1, which didn't come through my provider, but came through the Obi box, and I've had it less than one month.  I posed on the forum about it here http://www.obitalk.com/forum/index.php?topic=3410.0
and here http://www.obitalk.com/forum/index.php?topic=823.msg23566#msg23566

If Obi would allow the range format such as 204.11.192.0/22 to be entered in Service Providers->ITSP Profile A/B->SIP->X_AccessList this would stop the SIP scanner attacks to my Obi, and would greatly enhance security.

Thank you.

lacibaci:
+1 to this request. This would indeed make OBi much more secure.

MB..:
+1 - just posted without seeing this request.

A better feature would be to reject SIP connections from anywhere other than the registration server(s) with which the device is currently registered. (c.f. SPA2102)

JoeSchmoe007:
+1 for OP suggestion (enable IP range) and for MB suggestion (allow only registered server)

rsriram22:
+1

i have not had this problem, but looking at OP and few other threads on this issue, I d say add this feature in the next firmware release itself. security must be paramount!

Navigation

[0] Message Index

[#] Next page