<div dir="ltr"><div dir="ltr">in kamailio.dom_preferences...</div><div dir="ltr"><br></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Fri, Feb 7, 2020 at 11:28 PM Henk <<a href="mailto:henk@voipdigit.nl" target="_blank">henk@voipdigit.nl</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);padding-left:1ex">
  
    
  
  <div>
    <p>Even better! <br>
    </p>
    <p>Also peer_pref=1 seems possible, so that you can specify
      forbidden CLI's per trunk and use another trunk.</p>
    <p>Which table contains the blocklist?</p>
    <p>Regards,</p>
    <p>Henk<br>
    </p>
    <p><br>
    </p>
    <div>On 07-Feb-20 13:19, Walter Klomp wrote:<br>
    </div>
    <blockquote type="cite">
      
      <div dir="ltr">
        <div dir="ltr">Found a nicer solution so that blocklists work on
          domain level.
          <div><br>
          </div>
          <div>Put this in SQL:</div>
          <div><br>
          </div>
          <div>MariaDB [provisioning]> UPDATE voip_preferences SET
            dom_pref=1 WHERE attribute in ("block_in_list",
            "block_in_mode", "block_in_clir");<br>
          </div>
          <div><br>
          </div>
          <div>This will make the panel show the blocklist mechanism on
            domain level.</div>
          <div><br>
          </div>
          <div>Then you have a global blacklist, and it works. You can
            still overwrite the blocklist per subscriber or peer if you
            wish to do so.</div>
          <div><br>
          </div>
          <div><br>
          </div>
        </div>
      </div>
      <br>
      <div class="gmail_quote">
        <div dir="ltr" class="gmail_attr">On Fri, Feb 7, 2020 at 4:34 PM
          Henk via Spce-user <<a href="mailto:spce-user@lists.sipwise.com" target="_blank">spce-user@lists.sipwise.com</a>>
          wrote:<br>
        </div>
        <blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);padding-left:1ex">
          <div>
            <p>Hi Walter,</p>
            <p>Just as a coincidence I had the same issue last month. I
              tested two solutions:</p>
            <p>1. Make a dummy trunk and add outbound CLI rules to
              'capture' the disallowed traffic. The dummy trunk can just
              be a default Kamailio instance with the line</p>
            <p>sl_send_reply("403","CLI not allowed");<br>
            </p>
            <p>I tested with another system, but you can also add a
              Kamailio instance locally on a different port.</p>
            <p>2. Make a list of rewrite rules and rewrite all forbidden
              CLI's to a special like 'forbidden'. Then you can add some
              custom code in the proxy to reply with 403.</p>
            <p>I'm using the last one, but I've added the custom code in
              another (Kamailio) proxy that handles my traffic to this
              provider:</p>
            <p>            if ($fU=="forbidden")<br>
                          {<br>
                              # Illegal CLI, determined with rewrite
              rules<br>
                              sl_send_reply("403","This CLI is not
              allowed");<br>
                              exit;<br>
                          }</p>
            <p>I've imported the rules directly in
              provisioning.voip_rewrite_rules as the UI is not suited to
              add around 100 rules I have.<br>
            </p>
            <p>Hope this helps,</p>
            <p>Regards,</p>
            <p>Henk Plessius</p>
            <p>VoipDigit<br>
            </p>
            <div>On 07-Feb-20 08:12, Walter Klomp via Spce-user wrote:<br>
            </div>
            <blockquote type="cite">
              <div dir="ltr">Hi,
                <div><br>
                </div>
                <div>We need to block inbound calls based on CallerID. 
                  Is there a "global" version, or a list which I can
                  apply to multiple peers and subscribers (some sip
                  trunk customers have wildcard caller-id).<br clear="all">
                  <div><br>
                  </div>
                  <div>I was hoping on Admin NCOS, but that only blocks
                    on outgoing calls. (on called number).</div>
                  <div><br>
                  </div>
                  Hope some of you have some idea?</div>
                <div><br>
                </div>
                <div>Thanks</div>
                <div>Walter.<br>
                  <div dir="ltr">
                    <div dir="ltr">
                      <table style="font-family:Helvetica;width:259.8pt" width="346" cellspacing="0" cellpadding="0" border="0">
                        <tbody>
                          <tr>
                            <td style="padding:0cm" valign="top"><br>
                            </td>
                            <td style="padding:0cm"><br>
                            </td>
                          </tr>
                          <tr>
                            <td colspan="2" style="width:249.75pt;padding:0cm" width="333"><br>
                            </td>
                          </tr>
                        </tbody>
                      </table>
                      <div style="color:rgb(0,0,0);font-family:Helvetica;font-size:14px"><br>
                      </div>
                      <table style="font-family:Helvetica;width:259.8pt" width="400" cellspacing="0" cellpadding="0" border="0">
                        <tbody>
                          <tr>
                            <td style="padding:0in" valign="top"><br>
                            </td>
                          </tr>
                        </tbody>
                      </table>
                    </div>
                  </div>
                </div>
              </div>
              <br>
              <span style="color:rgb(34,34,34);font-family:sans-serif;background-color:rgb(255,255,255)"><font size="1"><span style="font-family:Arial;color:rgb(102,102,102);font-style:italic;vertical-align:baseline;white-space:pre-wrap">The contents of this email and any attachments are confidential and may also be privileged. You must not disseminate the contents of this email and any attachments without permission of the sender. If you have received this email by mistake, please delete all copies and inform the sender immediately. You may refer to our company's Privacy Policy </span><span style="color:rgb(102,102,102);font-family:Arial;font-style:italic;vertical-align:baseline;white-space:pre-wrap"><a href="https://myrepublic.net/sg/legal/terms-of-use-policies/privacy-policy/" target="_blank">here</a></span><span style="font-family:Arial;color:rgb(102,102,102);font-style:italic;vertical-align:baseline;white-space:pre-wrap">.</span></font></span>
              <br>
              <fieldset></fieldset>
            </blockquote>
          </div>
          -- <br>
          Spce-user mailing list<br>
          <a href="mailto:Spce-user@lists.sipwise.com" target="_blank">Spce-user@lists.sipwise.com</a><br>
          <a href="http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com" rel="noreferrer" target="_blank">http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com</a><br>
        </blockquote>
      </div>
      <br clear="all">
      <div><br>
      </div></blockquote></div></blockquote></div><div dir="ltr"><div dir="ltr"><div style="color:rgb(0,0,0);font-family:Helvetica;font-size:14px"><br></div><table border="0" cellspacing="0" cellpadding="0" width="400" style="font-family:Helvetica;width:259.8pt"><tbody><tr><td valign="top" style="padding:0in"><br></td></tr></tbody></table></div></div></div>

<br>
<span style="color:rgb(34,34,34);font-family:sans-serif;background-color:rgb(255,255,255)"><font size="1"><span style="font-family:Arial;color:rgb(102,102,102);font-style:italic;vertical-align:baseline;white-space:pre-wrap">The contents of this email and any attachments are confidential and may also be privileged. You must not disseminate the contents of this email and any attachments without permission of the sender. If you have received this email by mistake, please delete all copies and inform the sender immediately. You may refer to our company's Privacy Policy </span><span style="color:rgb(102,102,102);font-family:Arial;font-style:italic;vertical-align:baseline;white-space:pre-wrap"><a href="https://myrepublic.net/sg/legal/terms-of-use-policies/privacy-policy/" target="_blank">here</a></span><span style="font-family:Arial;color:rgb(102,102,102);font-style:italic;vertical-align:baseline;white-space:pre-wrap">.</span></font></span>