I have a newly installed Distro on Vultr VPS (PBX Firmware: 12.7.4-1712-2.sng7, Asterisk 13, FreePBX 126.96.36.199). It works great and I’m using the FreePBX firewall as usual.
The firewall is correctly stopping anyone browsing to port 80 (unless they’re on the whitelist) but for some reason I am getting notices from Fail2Ban about IPs being blocked. I’ve got responsive firewall on for CHAN_SIP and SIP is in the local zone only.
I have this identical setup on a number of machines and I never hear from Fail2Ban, presumably because the firewall prevents unidentified IPs being able to attempt to register more than 9 times (which is my current Fail2Ban trigger level). So my question is, is there a way of checking that the FreePBX firewall is actually OK and is handling my SIP traffic as it should be? There are no clues on the GUI to suggest anything is wrong. The NIC is in the Internet zone.