Why does freepbx connect to some IPs?

I’m running asterisk / freepbx 13 with chan_dongle on a debian 8.1 machine. I’ve noticed a few blocked IPs in the firewall logs: 11371 11371

These appeared during a call: 4024

So I did a fresh reinstall according to the official guide here on freepbx. During the install process I’ve noticed again these 2 entries: 11371 11371

Should I be worried? Can someone explain these?


It seems to be connecting to the OpenPGP Key Servers, so probably not much to worry about.

Hi and thanks for the reply,

I’ve read that port 11371 is for OpenPGP but I don’t know how to verify if those are official/ok servers. I am more worried about the other 2 ports 4010 and 4024 though.

I’ve checked those PGP servers there official servers so you’re ok there, the other ports I don’t know what they are but the IPs are private IPs so it should be something on your local network I guess.

1 Like


It’s most likely for this:


(ie module signing/validation…)

Have a nice day!


1 Like

Thanks for all the help!

I’m still a bit concerned about the private IPs because they are definitely not mine. Is it possible I’ve compiled a rogue chan_dongle module? Can a module do that? I haven’t installed anything else and I’m using CSipSimple from Google Play store. Asterisk logs don’t show any of those IPs.


So, I migrated to the new install. I’ve built chan_dongle from wdoekes’s github fork since I can’t compile the original bg111 repo. I can’t remember which fork I’ve compiled on the first machine.

Unfortunately I don’t know enough about linux and networking to properly troubleshoot this but I’m pretty sure there’s not reason for the server to contact those private IPs. I can only suspect one of the following:

  • broken chan_dongle module
  • malware on the huawei modem firmware
  • hacked machine during the brief time I forwarded ports for letsencrypt certification

So far, everything seems in order.


As you said those 10/8 addresses are private IPs so they are not routable on the Internet…

If they don’t belong to your equipment then they have to belong to your ISP because after that point they would no longer be routable…

Good luck and have a nice day!