[Spce-user] doubts about Banned Users and dos_whitelisted_ips
Jon Bonilla (Manwe)
jbonilla at sipwise.com
Thu Jun 20 05:08:59 EDT 2013
El Wed, 12 Jun 2013 08:42:35 +0000
Antonio David Martin <admartin at nixus.es> escribió:
> It is working now with this settings
>
> lb:
> extra_sockets: ~
> max_forwards: 10
> nattest_exception_ips: ~
> pkg_mem: 16
> port: 5060
> security:
> dos_ban_enable: 'no' <--- default was yes
> dos_ban_time: 300
> dos_reqs_density_per_unit: 50
> dos_sampling_time_unit: 5
> dos_whitelisted_ips: ~
> failed_auth_attempts: 3
> failed_auth_ban_enable: 'no' <--- default was yes
> failed_auth_ban_time: 3600
>
>
> Maybe only with the option "failed_auth_ban_enable: 'no'" should be enought
> for what I want to do.
Yes. The "dos" option counts requests/second/address while the ddos option
counts auth_requests/second/user
>
> My kamailio-lb is listening in two interfaces, one has a public ip, and I
> would like to have the pike module working in this domain, and disable it in
> the private domain. Is it possible without change some the code in
> the /etc/kamailio/lb/kamailio.cfg
>
No. With the default options you can just enable/disable the pike module
globally. You'll have to create your custom template to disable it for one
interface.
Anyways, this is not necessary in most cases. 10 requests/second is a lot of
requests and you can always whitelist specific ip addresses. Do you expect more
traffic from every ip address on your internal network? That would be something
to worry about :)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.sipwise.com/pipermail/spce-user_lists.sipwise.com/attachments/20130620/ea6ba438/attachment-0001.asc>
More information about the Spce-user
mailing list