I’ve checked those PGP servers there official servers so you’re ok there, the other ports I don’t know what they are but the IPs are private IPs so it should be something on your local network I guess.
I’m still a bit concerned about the private IPs because they are definitely not mine. Is it possible I’ve compiled a rogue chan_dongle module? Can a module do that? I haven’t installed anything else and I’m using CSipSimple from Google Play store. Asterisk logs don’t show any of those IPs.
So, I migrated to the new install. I’ve built chan_dongle from wdoekes’s github fork since I can’t compile the original bg111 repo. I can’t remember which fork I’ve compiled on the first machine.
Unfortunately I don’t know enough about linux and networking to properly troubleshoot this but I’m pretty sure there’s not reason for the server to contact those private IPs. I can only suspect one of the following:
broken chan_dongle module
malware on the huawei modem firmware
hacked machine during the brief time I forwarded ports for letsencrypt certification