Asterisk: Some registration attempts even after IP is banned

[lelutin]

I'm seeing registration attempts on a server even though the IP already got banned on the server.

The asterisk jail currently bans iax,sip,sip-tls but there are more open ports that we should take care of:

• 2000
• 5000
• 4520

those three don't have a service name in /etc/services so we need to list them by number for the ports configuration of the asterisk jail

[lelutin]

so apparently

• 2000 is associated with the "skinny" module
• 4520 is associated with the "dundi" module.

I don't know what port 5000 is associated with yet.

found the information here: https://piiis.blogspot.com/2009/05/reduce-number-of-ports-opened-by.html

[lelutin]

port 5000 is for UNISTIM

https://wiki.asterisk.org/wiki/display/AST/Introduction+to+the+Unistim+channel

there probably are more ports but I don't want to shoot in the dark .. for now the ports listed in the original message are the ones that I saw and through which there were some authentication attempts.

[lelutin]

pushed! this is fixed by f074eac