DaveD Posted October 21, 2013 Report Share Posted October 21, 2013 I'm receiving bizarre calls I believe are anattempt to pass toll calls through my server. Several inbound calls on my SIP trunk areshow as from '100 (100)' in the call long. And the 'to' field shows one of these: 00972597841671 (00972597841671) 0972597841671 (0972597841671) 9011441904898504 (9011441904898504) 011441904898504 (+441904898504) From this format, it appears someone is tryingvarious formats to dial either Israel or the U.K. There is no extension 100 registered, and becausethese calls apparently ring local extensions, noexternal call has actually completed. But becausethe call log shows an invalid 'from' and a 'to' thatmay be a valid international number, it appearsthere is some external access to the server. This really concerns me; what's going on here? Dave Here is a segment of the SIP logfile: SIP/2.0 200 OK Via: SIP/2.0/UDP <server local IP address>:5060;branch=z9hG4bK-22c1c73a8c11f54f47aaffcf117679bc;rport=5060;received=192.168.10.15From: "100" <sip:firstname.lastname@example.org;user=phone>;tag=24006To: "00972597841671" <sip:00972597841671@<public IP address>;user=phone>;tag=635631766Call-ID: 7d6ccdf3@pbxCSeq: 30725 BYEAllow: INVITE, ACK, CANCEL, BYE, NOTIFY, REFER, OPTIONS, UPDATE, PRACK, SUBSCRIBE, INFOAllow-Events: talk, hold, conference, LocalModeStatusServer: Aastra 9480iCT/220.127.116.1177Supported: pathContent-Length: 0 Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.