News:

On Tuesday September 6th the forum will be down for maintenance from 9:30 PM to 11:59 PM PDT

Main Menu

Proxy Servers, etc

Started by Lavarock7, September 16, 2021, 01:44:37 PM

Previous topic - Next topic

Lavarock7

So today Voip.Ms had what they describe as a Denial Of Service attack.

I noticed that my 2182 lines were all offline and then I checked my neighbors 2182 where *most* of them were also offline. There is a third neighbor (a business) who was still working. ODD...

I did a DNS lookup and found that almost all DNS servers checked did not have a record of VOIP.MS anymore. Perhaps that third 2182 had not rebooted yet.

So I found I that the servers were still working, just a DNS issue. I hardcoded the ProxyServer from xxxx.voip.ms to their IP address and got things going.

I looked in the Obi manual to see if I could have multiple entries, maybe a xxx.voip.ms and a hard-coded IP as a backup. The closest I found was a sip x_proxyredundancy but it said it needed domain info not IP addresses.

Is there an easy/simple way to use a hardcoded IP in place of the domain entry in case the domain entry is missing?

Thus: use xxx.voip.ms  but if it fails, try the following IP address. That would keep me from having to log into either the account (Expert Config) or the device IP address, if this scenario ever happens again.
My websites: Kona Coffee: http://itskona.com and Web Hosting: http://planetaloha.info<br />A simplified Voip explanation: http://voip.planet-aloha.com

Taoman

Quote from: Lavarock7 on September 16, 2021, 01:44:37 PM

Is there an easy/simple way to use a hardcoded IP in place of the domain entry in case the domain entry is missing?

Make a Local DNS Record on your OBi for the voip.ms server(s) you register to.

To access the Voip.ms portal from your computer you could add an entry for voip.ms of 173.231.187.61 in your hosts file.

Lavarock7

#2
Thanks, I thought of that but had not yet tried it for the Website.

What I really need is a way for an Obi to have an alternate IP address to go to if the DNS record fails.

My other thought was to try configuring an A record at a domain I own (lets call it x.y.com) and if the proxy redundancy entry lets me choose two domain names I could have Voip.Ms as one and X.Y.Com as another. The X.Y.Z would have the known IP address on it.

Granted, hardcoded IPs are not a great idea but in this case the phones would try the alternate domain and pick up the IP address.

My issues is that I have multiple neighbors and businesses all using phones. To have to manually access each SP and change the address is a pain. Maybe I should start charging for support :-)
My websites: Kona Coffee: http://itskona.com and Web Hosting: http://planetaloha.info<br />A simplified Voip explanation: http://voip.planet-aloha.com

Taoman

Hey Lavarock7, how are you making out with VoIP.MS still down? I assume you are following their Twitter feed? Things aren't looking good on day 3 of the outage.

Quote from: Voip.msOur continuous efforts have not stopped as the attacks are still ongoing on our infrastructure. We really appreciate all of the message of support and understanding from the public. We sincerely apologize for the disruption and impact this is causing to all of our customers...

https://twitter.com/voipms


Lavarock7

The two neighbors I have did not port their main number in, so all we had to do was re-forward their number to  a cell phone. They had purchased a local number hosted with Voip.Ms so that they could keep the main number with the telco and just froward the calls to the alternate number to get all Voip.Ms options.

I found some of the Voip.Ms servers that were fairly stable and switched to them (once I could get to the website control panel).

I also have watched as they added Cloudflare to be a firewall against DDOS. I know it will take time for them to get their website stable and also the servers. Cloudflare hides the IP addresses and that will help. people should not know the IP addresses of the servers (in my opinion), although it helped me last night.

Since the neighbors are using ObiPhones I just Created CallCentric accounts for them. That way they will have a separate button on their phones which can be enabled if this type of DDOS happens again. Both services will show the same outbound Caller Id Number (the main office number).

In both these cases, the companies have no long distance service with the telco because of a very high price. Thus the phantom numbers for the VOIP providers have to be local calls for these phones.

So I have watched Voip.Ms this whole time, they have kept Twitter updates going, doing the best they can under the circumstances. I see a few people horrified at what has happened, yet many customers are understanding and quote many years service with no issues at all. Yes, Voip.Ms could have used Cloudflare sooner and perhaps done more up front, but many companies have been in the same place.
My websites: Kona Coffee: http://itskona.com and Web Hosting: http://planetaloha.info<br />A simplified Voip explanation: http://voip.planet-aloha.com

Taoman

Quote from: Lavarock7 on September 18, 2021, 01:44:51 PM

I found some of the Voip.Ms servers that were fairly stable and switched to them (once I could get to the website control panel).

I also have watched as they added Cloudflare to be a firewall against DDOS. I know it will take time for them to get their website stable and also the servers. Cloudflare hides the IP addresses and that will help. people should not know the IP addresses of the servers (in my opinion), although it helped me last night.


I also had to switch POP servers to be able to register.

Yes, hopefully all the POP servers (and web portal) ip addresses will be hidden by Cloudflare.

Have you seen the REvil supposed tweets and ransom demands? Twitter account was created this month so it easily could be fake.
https://twitter.com/REvil92457183/with_replies