Create sip-auth-challenge-ip.conf

2018-07-11 19:52:00 -06:00
parent f0a72884f8
commit 2723d9f0ab
1 changed files with 21 additions and 0 deletions
--- a/freebsd/resources/fail2ban/sip-auth-challenge-ip.conf
+++ b/freebsd/resources/fail2ban/sip-auth-challenge-ip.conf
@@ -0,0 +1,21 @@
+# Fail2Ban configuration file
+#
+
+[Definition]
+
+# Option:  failregex
+# Notes.:  regex to match the password failures messages in the logfile. The
+#          host must be matched by a group named "host". The tag "<HOST>" can
+#          be used for standard IP/hostname matching and is only an alias for
+#          (?:::f{4,6}:)?(?P<host>[\w\-.^_]+)
+# Values:  TEXT
+#
+#[WARNING] sofia_reg.c:1792 SIP auth challenge (INVITE) on sofia profile 'internal' for [+972592277524@xxx.xxx.xxx.xxx] from ip 209.160.120.12 
+failregex = \[WARNING\] sofia_reg.c:1792 SIP auth challenge \(INVITE\) on sofia profile 'internal' for \[.*@\d+.\d+.\d+.\d+\] from ip <HOST>
+
+
+# Option:  ignoreregex
+# Notes.:  regex to ignore. If this regex matches, the line is ignored.
+# Values:  TEXT
+#
+ignoreregex =