Skip to Content.
Sympa Menu

isn-discuss - Re: [isn-discuss] anybody use ITAD

Subject: Discussion List for Freenum/ITAD Subscriber Number (ISN) Project

List archive

Re: [isn-discuss] anybody use ITAD

Chronological Thread 
  • From: John Covert <>
  • To:
  • Subject: Re: [isn-discuss] anybody use ITAD
  • Date: Mon, 04 Sep 2017 15:35:59 -0400
  • Ironport-phdr: 9a23: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

If you firewall SIP from all but a few whitelisted addresses, then there
is no point at all to ISN dialing via an ITAD number which your employees
put on their business cards, is there?

And no point to ENUM at all. Just give all the traffic to the carriers.
Forget the idea of open telephony.

No! I won't give up, just because the script kiddies are out there
banging away.

Better to publish something in the ISN ENUM that prefixes all of your
numbers with a unique digit sequence that can be validated, and accept
anonymous SIP calls from all addresses, but only if they begin with the
published sequence.

And you can automate the addition of firewall rules for the addresses
running SIPvicious and other bots, as well as the pruning of addresses
that haven't been naughty for some time.


On 9/4/2017 3:20 PM, James Cloos wrote:
Hi i'm intersting in use ITAD number, but i assume that for security issues
unviable, i looking for information and for examples in multiple vendors but
seems to be inexistent, i want to implement with clients in an asterisk
server, do you recomend to use it with all security recomendations or it is
better not use it?
The best option is to put a sip proxy in front of the pbx, and have it reject
unwanted sip, much like how MXs reject bogus mail.

The sip proxy can forward INVITEs you want on to your asterisk. The asterisk
machine should firewall sip from all but a few whitelisted addresses.


Archive powered by MHonArc 2.6.19.

Top of Page