I just did a new install of Freepbx distro.
Created a new trunk, inbound and outboud routes and an extension.
I putty’ed into the server and went into asterisk to see the following:
[2019-02-08 14:15:45] ERROR[27973]: pjproject:0 <?>: sip_inv.c .Error parsing/validating SDP body: Missing SDP rtpmap for dynamic payload type (PJMEDIA_SDP_EMISSINGRTPMAP)
[2019-02-08 14:19:11] ERROR[27973]: pjproject:0 <?>: sip_inv.c .Error parsing/validating SDP body: Missing SDP rtpmap for dynamic payload type (PJMEDIA_SDP_EMISSINGRTPMAP)
[2019-02-08 14:37:44] WARNING[27973]: res_pjsip_registrar.c:989 registrar_on_rx_request: Endpoint ‘anonymous’ has no configured AORs
[2019-02-08 14:39:44] ERROR[27973]: pjproject:0 <?>: sip_inv.c .Error parsing/validating SDP body: Missing SDP rtpmap for dynamic payload type (PJMEDIA_SDP_EMISSINGRTPMAP)
== Setting global variable ‘SIPDOMAIN’ to ‘96.47.191.109’
– Executing [[email protected]:1] NoOp(“PJSIP/anonymous-00000527”, “Received incoming SIP connection from unknown peer to 9011442030340184”) in new stack
– Executing [[email protected]:2] Set(“PJSIP/anonymous-00000527”, “DID=9011442030340184”) in new stack
– Executing [[email protected]:3] Goto(“PJSIP/anonymous-00000527”, “s,1”) in new stack
– Goto (from-sip-external,s,1)
– Executing [[email protected]:1] GotoIf(“PJSIP/anonymous-00000527”, “1?setlanguage:checkanon”) in new stack
– Goto (from-sip-external,s,2)
– Executing [[email protected]:2] Set(“PJSIP/anonymous-00000527”, “CHANNEL(language)=en”) in new stack
– Executing [[email protected]:3] GotoIf(“PJSIP/anonymous-00000527”, “1?noanonymous”) in new stack
– Goto (from-sip-external,s,5)
– Executing [[email protected]:5] Set(“PJSIP/anonymous-00000527”, “TIMEOUT(absolute)=15”) in new stack
– Channel will hangup at 2019-02-08 14:49:08.344 EST.
[2019-02-08 14:48:53] WARNING[16505][C-00000527]: func_channel.c:460 func_channel_read: Unknown or unavailable item requested: ‘recvip’
– Executing [[email protected]:6] Log(“PJSIP/anonymous-00000527”, "WARNING,"Rejecting unknown SIP connection from “”) in new stack
[2019-02-08 14:48:53] WARNING[16505][C-00000527]: Ext. s:6 @ from-sip-external: "Rejecting unknown SIP connection from "
– Executing [[email protected]:7] Answer(“PJSIP/anonymous-00000527”, “”) in new stack
> 0x7f7c94009cd0 – Strict RTP learning after remote address set to: 46.166.139.12:5072
– Executing [[email protected]:8] Wait(“PJSIP/anonymous-00000527”, “2”) in new stack
– Executing [[email protected]:9] Playback(“PJSIP/anonymous-00000527”, “ss-noservice”) in new stack
– <PJSIP/anonymous-00000527> Playing ‘ss-noservice.ulaw’ (language ‘en’)
– Executing [[email protected]:10] PlayTones(“PJSIP/anonymous-00000527”, “congestion”) in new stack
– Executing [[email protected]:11] Congestion(“PJSIP/anonymous-00000527”, “5”) in new stack
== Spawn extension (from-sip-external, s, 11) exited non-zero on ‘PJSIP/anonymous-00000527’
– Executing [[email protected]:1] Hangup(“PJSIP/anonymous-00000527”, “”) in new stack
== Spawn extension (from-sip-external, h, 1) exited non-zero on ‘PJSIP/anonymous-00000527’
how can I stop the anonymous connections?
I was getting bombarded with these, like every 2 seconds. I did some changes on the FreePBX firewall and setup some GeoIP blocking rules on my Untangle firewall.
but these are still coming in.
I did just notice that the connection before was at 13:32 or 64 min prior.
Does fail2ban look for these entries?
Thanks
Joe