Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4


1081 posts

Uber Geek

Trusted
DR

  #1078181 1-Jul-2014 19:43
Send private message

Just got it set to 1Gb a month.

5636 posts

Uber Geek

Trusted
Lifetime subscriber

  #1078184 1-Jul-2014 19:49
Send private message

Try a Draytek router, they are pretty good at handling SIP traffic. I've never had to port forward to get Asterisk or other VoIP configurations working.




Chorus has spent $1.4 billion on making their xDSL broadband network faster and even more now as they are upgrading their rural Conklins. If your still stuck on ADSL or VDSL, why not spend $195 on a master filter install to make sure you are getting the most out of your connection?
I install - Naked DSL, DSL Master Splitters, VoIP, data cabling and general computer support for home and small business.
Rural Broadband RBI installer for Ultimate Broadband and Full Flavour

 

Need help in Auckland, Waikato or BoP? Click my email button, or email me direct: [my user name] at geekzonemail dot com


 
 
 
 




1081 posts

Uber Geek

Trusted
DR

  #1078186 1-Jul-2014 19:50
Send private message

Ok, looking at tcpdump logs I see traffic from

SIP
107.150.45.66 New York
188.138.5.114 Berlin
202.180.76.182 Auckland ? WxC
27.111.14.65 Auckland
198.204.231.123 Sydney

TCP
74.125.31.125 Atlanta
216.52.233.71 Los Angeles




1081 posts

Uber Geek

Trusted
DR

  #1078193 1-Jul-2014 20:12
Send private message

Anyone tried the Sippot RBL client http://www.opentek.ca/sippot



1081 posts

Uber Geek

Trusted
DR

  #1078254 1-Jul-2014 21:24
Send private message

Oh well, I installed the sippot RBL client which added about 1400 addresses to my iptables
I then added the 5 other ip addresses that came from overseas to iptables as well ( none was in their honeypot list).
Shall run tcpdump again and see what else pops up.


4379 posts

Uber Geek

Trusted

  #1078286 1-Jul-2014 21:46
Send private message

27.111.14.65 is 2Talk's proxy.



1081 posts

Uber Geek

Trusted
DR

  #1078296 1-Jul-2014 21:52
Send private message

And the other Auckland address belongs to callplus.

Yep, I have another pap2t or something device on premises which is turned off ... and I guess they're trying to find it.


 
 
 
 




1081 posts

Uber Geek

Trusted
DR

  #1078339 1-Jul-2014 22:51
Send private message

And 74.125.31.125 is xmpp traffic.

I must have googlevoice installed on my asterisk box.

23073 posts

Uber Geek

Trusted
Subscriber

  #1078342 1-Jul-2014 22:57
Send private message

5060 is not the port that is used for audio, so fowarding it will not help with one way audio, there is another range that does the audio which can help, but even with it fowarded I was geting one way audio too often when going via asterisk.

Only reason to foward 5060 is to allow off site registration.

I gave up on asterisk and just have several analog phones on several ATA's to get all the numbers I need registered on. I take phone calls so seldom its not a big deal.

IMO asterisk is just not reliable enough in a natted configuration. It does dumb stuff that no ATA has ever done like totally lose all registrations when one dynamic dns name stopped resolving etc.




Richard rich.ms



1081 posts

Uber Geek

Trusted
DR

  #1078346 1-Jul-2014 23:16
Send private message

Well, I haven't had those sorts of issues.
I did have 629,000 calls in June .. though none made it outside except the local calls I personally made.
I've got hold of a router flashed with DD-WRT which allows me to set the source for NAT so once I'm up in the office I can try and install that.
In the meantime I'll see if these 1400 RBL addresses help.



1081 posts

Uber Geek

Trusted
DR

  #1078411 2-Jul-2014 08:17
Send private message

Only had 2 calls overnight, and already 22mb of traffic.

Have now disabled Truenet checking and also disabled the WiFi on their probe in case someone has been using my WiFi.

If I still have traffic over the day, will try another tcpdump.

37 posts

Geek


  #1078432 2-Jul-2014 09:12
Send private message

Try an IP filter for WXC proxy server IP, rather than a port forward.

https://i.imgur.com/z5ZnW9e.png

This will allow all communication from WXC sip proxy to your asterisk and dump every other IP:5060 at the WAN port.

You'll still get charged for traffic sent to your connection but whoever is sending you traffic will move on once you start dropping packets.

If you're on a dynamic IP with your service provider I'd recommend rebooting after the setting is in to get a different IP.
If its a static check with ISP about changing the address.




1081 posts

Uber Geek

Trusted
DR

  #1078538 2-Jul-2014 11:53
Send private message

Thanks for looking at that for me.

I only have ssh access to my Asterisk box, and no GUI.  
And I'm not aware of any command line tool that I can use to change the Netcomm settings.
So, I'll have to wait until I can get to the office to try this out.


'That VDSL Cat'
11893 posts

Uber Geek

Trusted
Spark
Subscriber

  #1078545 2-Jul-2014 12:09
Send private message

gchiu: Thanks for looking at that for me.

I only have ssh access to my Asterisk box, and no GUI.  
And I'm not aware of any command line tool that I can use to change the Netcomm settings.
So, I'll have to wait until I can get to the office to try this out.



how about an ssh tunnel, should be able to access your routers webinterface from there.




#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 




1081 posts

Uber Geek

Trusted
DR

  #1078781 2-Jul-2014 17:16
Send private message

Yes, I do have ssh running but not sure how  I can bring up a GUI to the router.

Anyway, in the meantime, I have altered my iptables by

Removing these lines:

 

ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0

 

ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0           udp dpts:5000:5082 

 


And then:

/sbin/iptables -A INPUT -s 182.154.16.150,58.28.20.150,202.180.76.182,27.111.14.65,192.168.1.0/24,25.107.0.0/16 -p udp --dport 5000:5082 -j ACCEPT

So, I think SIP traffic is now just limited to WxC and 2talk externally, and allowed on Hamachi VPN, and local lan.

I'll see what happens now.

1 | 2 | 3 | 4
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Huawei introduces the P40 Series of Android-based smartphones
Posted 31-Mar-2020 17:03


Samsung Galaxy Z Flip now available for pre-order in New Zealand
Posted 31-Mar-2020 16:39


New online learning platform for kids stuck at home during COVID-19 lockdown
Posted 26-Mar-2020 21:35


New 5G Nokia smartphone unveiled as portfolio expands
Posted 26-Mar-2020 17:11


D-Link ANZ launches wireless AC1200 4G LTE router
Posted 26-Mar-2020 16:32


Ring introduces two new video doorbells and new pre-roll technology
Posted 17-Mar-2020 16:59


OPPO uncovers flagship Find X2 Pro smartphone
Posted 17-Mar-2020 16:54


D-Link COVR-2202 mesh Wi-Fi system now protected by McAfee
Posted 17-Mar-2020 16:00


Spark Sport opens its platform up to all New Zealanders at no charge
Posted 17-Mar-2020 10:04


Spark launches 5G Starter Fund
Posted 8-Mar-2020 19:19


TRENDnet launches high-performance WiFi Mesh Router System
Posted 5-Mar-2020 08:48


Sony boosts full-frame lens line-up with introduction of FE 20mm F1.8 G large-aperture ultra-wide-angle prime Lens
Posted 5-Mar-2020 08:44


Vector and Spark teamed up on smart metering initiative
Posted 5-Mar-2020 08:42


Schneider Electric launches new PDL Pro Series designed specifically for the commercial building market
Posted 5-Mar-2020 08:39


Kiwi app Pedigree DentaStix Studios uses pet images to counter impact of negative social media Content
Posted 5-Mar-2020 08:32



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.