Dear Team,
On Soniwall firewall real time logs we are receiving some weird messing like below can any one advised advise on this ASAP,
04/09/2015 16:21:08.176 Debug VOIP SIP Response 10.10.10.10, 5060, X1, 192.168.10.114, 5060, X0 SIP REGISTER (401 Unauthorized) (306
-Tenantname@mynamedns.com)
04/09/2015 16:25:54.032 Debug VOIP VoIP10.10.10.10 :5060 (SIP) Endpoint added
04/09/2015 16:25:51.480 Debug VOIP VoIP 110.10.10.10:5060 (SIP) Endpoint removed
Can you please advise on this ASAP,
Regards
Ramana
Submitted by KevinH on Thu, 04/30/2015
Permalink
It is best to avoid using a firewall and just use the native security features in Linux to secure you PBX (iptables, fail2ban, tcpwrappers, etc).
That being said we have successfully configured several firewall types to work with Asterisk but it is pretty tricky. Depending on how your system is setup, the 401 Unauthroized could be a normal response, but it is hard to tell without knowing your network infrastructure or server setup. On a normal call from a phone the phone sends an invite, the server sends back a 401 (telling the phone to send its credentials to send the call) then the phone sends its SIP user/pass followed by another invite.
Kevin Hawkins
Lead Telecommunications Engineer
Xobee Communications
559.579.1300 x730