I apologize but I am quite new to this.
I’m running the FreePBX 12/Asterisk 11 distro. I have 3 trunks, two SIP and one analog through a Cisco SPA8800, 3 remote SIP extensions, 1 remote IAX2 device, and 3 local SIP extensions, including one analog line through a Cisco SPA 8800. Everything is working perfectly.
I’ve set intrusion detection to permanently ban IPs after 2 failed attempts. When I first set up my system, I would get one, maybe two hack attempts a day. Lately, however, I’ve been getting huge numbers of them. About 2 weeks ago, I copied my system over to an SSD which, of course, required a cold restart. In just two weeks, this is list of IPs from Fail2Ban:
23.92.80.40
104.243.24.203
104.46.32.240
107.150.51.46
107.182.20.226
109.73.73.146
119.81.143.222
119.81.160.77
142.54.182.18
155.94.64.74
176.227.195.10
176.31.252.39
188.165.200.38
188.227.180.42
188.227.186.18
192.151.150.10
192.151.156.90
192.187.115.202
192.187.98.242
195.154.150.68
195.154.150.70
198.204.235.50
198.204.251.242
198.204.252.250
216.155.151.250
37.187.73.97
37.220.18.210
37.8.65.115
5.152.205.122
5.189.146.109
5.39.218.248
5.39.219.3
50.30.47.48
54.223.158.130
62.210.201.59
62.210.211.233
62.210.90.101
63.141.247.226
85.25.217.111
Are there really that many scummy would-be hackers out there?