Взломали, но не могу понять как. Помогите.
| Цитата: |
| "","1000","81023322099980500","from-internal","1000","SIP/77.41.95.35-00000072","SIP/pctel-00000073","Dial","SIP/023322099980500@pctel,50,Tt","2011-11-08 14:48:23",,"2011-11-08 14:49:06",43,0,"FAILED","DOCUMENTATION","1320763703.114","" "","1000","810375239886400","from-internal","1000","SIP/77.41.95.35-00000074","SIP/pctel-00000075","Dial","SIP/0375239886400@pctel,50,Tt","2011-11-08 14:48:37",,"2011-11-08 14:49:09",32,0,"FAILED","DOCUMENTATION","1320763717.116","" "","1000","810221770099400","from-internal","1000","SIP/77.41.95.35-0000007c","SIP/pctel-0000007d","Dial","SIP/0221770099400@pctel,50,Tt","2011-11-08 14:49:20",,"2011-11-08 14:49:21",1,0,"BUSY","DOCUMENTATION","1320763760.124","" "","1000","81037052654152","from-internal","1000","SIP/77.41.95.35-0000007e","SIP/pctel-0000007f","Dial","SIP/037052654152@pctel,50,Tt","2011-11-08 14:49:30",,"2011-11-08 14:49:32",2,0,"BUSY","DOCUMENTATION","1320763770.126","" "","1000","81085026788156","from-internal","1000","SIP/77.41.95.35-00000078","SIP/pctel-00000079","Dial","SIP/085026788156@pctel,50,Tt","2011-11-08 14:49:02",,"2011-11-08 14:49:42",40,0,"BUSY","DOCUMENTATION","1320763742.120","" "","1000","8106708878500","from-internal","1000","SIP/77.41.95.35-00000076","SIP/pctel-00000077","Dial","SIP/06708878500@pctel,50,Tt","2011-11-08 14:48:54",,"2011-11-08 14:49:45",51,0,"NO ANSWER","DOCUMENTATION","1320763734.118","" "","1000","8106757723301","from-internal","1000","SIP/77.41.95.35-0000007a","SIP/pctel-0000007b","Dial","SIP/06757723301@pctel,50,Tt","2011-11-08 14:49:10",,"2011-11-08 14:50:02",52,0,"NO ANSWER","DOCUMENTATION","1320763750.122","" "","1000","81037091010701","from-internal","1000","SIP/77.41.95.35-00000080","SIP/pctel-00000081","Dial","SIP/037091010701@pctel,50,Tt","2011-11-08 14:49:41",,"2011-11-08 14:50:13",32,0,"FAILED","DOCUMENTATION","1320763781.128","" "","1000","81096892761505","from-internal","1000","SIP/77.41.95.35-00000082","SIP/pctel-00000083","Dial","SIP/096892761505@pctel,50,Tt","2011-11-08 14:49:54",,"2011-11-08 14:50:13",19,0,"NO ANSWER","DOCUMENTATION","1320763794.130","" "","1000","8108818905161","from-internal","1000","SIP/77.41.95.35-00000084","SIP/pctel-00000085","Dial","SIP/08818905161@pctel,50,Tt","2011-11-08 14:52:39",,"2011-11-08 14:52:39",0,0,"BUSY","DOCUMENTATION","1320763959.132","" "","1000","8108818905161","from-internal","1000","SIP/77.41.95.35-00000086","SIP/pctel-00000087","Dial","SIP/08818905161@pctel,50,Tt","2011-11-08 14:53:46",,"2011-11-08 14:53:47",1,0,"BUSY","DOCUMENTATION","1320764026.134","" "","1000","81043820904335","from-internal","1000","SIP/77.41.95.35-0000008a","SIP/pctel-0000008b","Dial","SIP/043820904335@pctel,50,Tt","2011-11-08 14:54:24",,"2011-11-08 14:54:56",32,0,"FAILED","DOCUMENTATION","1320764064.138","" "","1000","81043820904325","from-internal","1000","SIP/77.41.95.35-00000088","SIP/pctel-00000089","Dial","SIP/043820904325@pctel,50,Tt","2011-11-08 14:54:08",,"2011-11-08 14:54:59",51,0,"NO ANSWER","DOCUMENTATION","1320764048.136","" "","1000","81043820904325","from-internal","1000","SIP/77.41.95.35-0000008c","SIP/pctel-0000008d","Dial","SIP/043820904325@pctel,50,Tt","2011-11-08 14:55:01",,"2011-11-08 14:55:42",41,0,"FAILED","DOCUMENTATION","1320764101.140","" "","1000","81043820904335","from-internal","1000","SIP/77.41.95.35-0000008e","SIP/pctel-0000008f","Dial","SIP/043820904335@pctel,50,Tt","2011-11-08 14:55:24",,"2011-11-08 14:55:56",32,0,"FAILED","DOCUMENTATION","1320764124.142","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-00000090","SIP/pctel-00000091","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:54",,"2011-11-08 14:59:54",0,0,"NO ANSWER","DOCUMENTATION","1320764394.144","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-00000092","SIP/pctel-00000093","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:56",,"2011-11-08 15:00:26",30,0,"NO ANSWER","DOCUMENTATION","1320764396.146","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-00000096","SIP/pctel-00000097","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:57",,"2011-11-08 15:00:29",32,0,"FAILED","DOCUMENTATION","1320764397.150","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-00000098","SIP/pctel-00000099","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:58",,"2011-11-08 15:00:30",32,0,"FAILED","DOCUMENTATION","1320764398.152","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-0000009a","SIP/pctel-0000009b","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:58",,"2011-11-08 15:00:31",33,0,"FAILED","DOCUMENTATION","1320764398.154","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-0000009c","SIP/pctel-0000009d","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:58",,"2011-11-08 15:00:31",33,0,"FAILED","DOCUMENTATION","1320764398.156","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-0000009e","SIP/pctel-0000009f","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:00:30",,"2011-11-08 15:00:45",15,0,"NO ANSWER","DOCUMENTATION","1320764430.158","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000a0","SIP/pctel-000000a1","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:00:50",,"2011-11-08 15:01:22",32,0,"FAILED","DOCUMENTATION","1320764450.160","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000a2","SIP/pctel-000000a3","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:01:32",,"2011-11-08 15:02:04",32,0,"FAILED","DOCUMENTATION","1320764492.162","" "","1000","81043820946643","from-internal","1000","SIP/77.41.95.35-000000a4","SIP/pctel-000000a5","Dial","SIP/043820946643@pctel,50,Tt","2011-11-08 15:02:30",,"2011-11-08 15:03:01",31,0,"FAILED","DOCUMENTATION","1320764550.164","" "","1000","810881942011440","from-internal","1000","SIP/77.41.95.35-000000a6","SIP/pctel-000000a7","Dial","SIP/0881942011440@pctel,50,Tt","2011-11-08 15:06:00",,"2011-11-08 15:06:01",1,0,"BUSY","DOCUMENTATION","1320764760.166","" "","1000","810375256222300","from-internal","1000","SIP/77.41.95.35-000000ae","SIP/pctel-000000af","Dial","SIP/0375256222300@pctel,50,Tt","2011-11-08 15:06:45",,"2011-11-08 15:06:46",1,0,"BUSY","DOCUMENTATION","1320764805.174","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-00000094","SIP/pctel-00000095","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 14:59:57","2011-11-08 15:00:03","2011-11-08 15:06:49",412,406,"ANSWERED","DOCUMENTATION","1320764397.148","" "","1000","8103727036500","from-internal","1000","SIP/77.41.95.35-000000a8","SIP/pctel-000000a9","Dial","SIP/03727036500@pctel,50,Tt","2011-11-08 15:06:08",,"2011-11-08 15:06:53",45,0,"FAILED","DOCUMENTATION","1320764768.168","" "","1000","8103727039500","from-internal","1000","SIP/77.41.95.35-000000aa","SIP/pctel-000000ab","Dial","SIP/03727039500@pctel,50,Tt","2011-11-08 15:06:23",,"2011-11-08 15:07:08",45,0,"FAILED","DOCUMENTATION","1320764783.170","" "","1000","8103727049500","from-internal","1000","SIP/77.41.95.35-000000ac","SIP/pctel-000000ad","Dial","SIP/03727049500@pctel,50,Tt","2011-11-08 15:06:37",,"2011-11-08 15:07:23",46,0,"FAILED","DOCUMENTATION","1320764797.172","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000b2","SIP/pctel-000000b3","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:07:25",,"2011-11-08 15:07:40",15,0,"NO ANSWER","DOCUMENTATION","1320764845.178","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000b4","SIP/pctel-000000b5","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:07:54",,"2011-11-08 15:08:20",26,0,"NO ANSWER","DOCUMENTATION","1320764874.180","" "","1000","810447559516202","from-internal","1000","SIP/77.41.95.35-000000b8","SIP/pctel-000000b9","Dial","SIP/0447559516202@pctel,50,Tt","2011-11-08 15:09:20",,"2011-11-08 15:09:23",3,0,"NO ANSWER","DOCUMENTATION","1320764960.184","" "","1000","810447559516202","from-internal","1000","SIP/77.41.95.35-000000ba","SIP/pctel-000000bb","Dial","SIP/0447559516202@pctel,50,Tt","2011-11-08 15:09:25",,"2011-11-08 15:09:54",29,0,"FAILED","DOCUMENTATION","1320764965.186","" "","1000","810375256222300","from-internal","1000","SIP/77.41.95.35-000000bc","SIP/pctel-000000bd","Dial","SIP/0375256222300@pctel,50,Tt","2011-11-08 15:10:12",,"2011-11-08 15:10:35",23,0,"NO ANSWER","DOCUMENTATION","1320765012.188","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000b0","SIP/pctel-000000b1","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:07:06","2011-11-08 15:07:11","2011-11-08 15:11:40",274,269,"ANSWERED","DOCUMENTATION","1320764826.176","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000c0","SIP/pctel-000000c1","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:12:10",,"2011-11-08 15:12:15",5,0,"BUSY","DOCUMENTATION","1320765130.192","" "","1000","8102917278400","from-internal","1000","SIP/77.41.95.35-000000be","SIP/pctel-000000bf","Dial","SIP/02917278400@pctel,50,Tt","2011-11-08 15:10:38","2011-11-08 15:10:58","2011-11-08 15:12:48",130,110,"ANSWERED","DOCUMENTATION","1320765038.190","" "","1000","81085085789500","from-internal","1000","SIP/77.41.95.35-000000c4","SIP/pctel-000000c5","Dial","SIP/085085789500@pctel,50,Tt","2011-11-08 15:13:32",,"2011-11-08 15:13:34",2,0,"BUSY","DOCUMENTATION","1320765212.196","" "","1000","81085092896300","from-internal","1000","SIP/77.41.95.35-000000c6","SIP/pctel-000000c7","Dial","SIP/085092896300@pctel,50,Tt","2011-11-08 15:13:40",,"2011-11-08 15:13:40",0,0,"BUSY","DOCUMENTATION","1320765220.198","" "","1000","81085048922300","from-internal","1000","SIP/77.41.95.35-000000c8","SIP/pctel-000000c9","Dial","SIP/085048922300@pctel,50,Tt","2011-11-08 15:13:47",,"2011-11-08 15:13:50",3,0,"BUSY","DOCUMENTATION","1320765227.200","" "","1000","810447559516202","from-internal","1000","SIP/77.41.95.35-000000b6","SIP/pctel-000000b7","Dial","SIP/0447559516202@pctel,50,Tt","2011-11-08 15:08:32","2011-11-08 15:08:50","2011-11-08 15:13:51",319,301,"ANSWERED","DOCUMENTATION","1320764912.182","" "","1000","81043820946646","from-internal","1000","SIP/77.41.95.35-000000c2","SIP/pctel-000000c3","Dial","SIP/043820946646@pctel,50,Tt","2011-11-08 15:12:58","2011-11-08 15:13:04","2011-11-08 15:13:52",54,48,"ANSWERED","DOCUMENTATION","1320765178.194","" "","1000","81085026251300","from-internal","1000","SIP/77.41.95.35-000000ca","SIP/pctel-000000cb","Dial","SIP/085026251300@pctel,50,Tt","2011-11-08 15:13:56",,"2011-11-08 15:13:56",0,0,"BUSY","DOCUMENTATION","1320765236.202","" "","1000","81023222288700","from-internal","1000","SIP/77.41.95.35-000000cc","SIP/pctel-000000cd","Dial","SIP/023222288700@pctel,50,Tt","2011-11-08 15:14:04",,"2011-11-08 15:14:06",2,0,"BUSY","DOCUMENTATION","1320765244.204","" "","1000","8106757956300","from-internal","1000","SIP/77.41.95.35-000000d0","SIP/pctel-000000d1","Dial","SIP/06757956300@pctel,50,Tt","2011-11-08 15:14:37",,"2011-11-08 15:14:39",2,0,"BUSY","DOCUMENTATION","1320765277.208","" |
Видно, что один звонок пробился, и он и оказался тем самым, который опустошил мой счет. Парадокс в том - что у меня нету даже учетки с номером 1000
sip.conf
[general]
context = from-internal
bindport=5060
srvlookup=yes
disallow=all
allow=ulaw
allow=alaw
language=ru
srvlookup=no
alwaysauthreject = yes
register => XXX:XXX@sip.pctel.ru/YYY
[pctel]
type=friend
secret=XXX
defaultuser=XXX@sip.pctel.ru
fromuser=XXX
fromdomain=sip.pctel.ru
host=sip.pctel.ru
port=5060
insecure=invite
qualify=no
disallow=all
allow=ulaw
allow=alaw
dtmfmode=rfc2833
canreinvite=no
nat=no
[000]
type=friend
username=000
secret=XXX
;nat=yes ; This phone may be natted
host=dynamic
canreinvite=no ; Cisco poops on reinvite sometimes
qualify=3000 ; Qualify peer is no more than 200ms away
disallow=all
allow=ulaw
allow=alaw
deny=0.0.0.0/0
permit=10.10.1.0/24
[001]
type=friend
username=001
secret=XXX
nat=yes ; This phone may be natted
host=dynamic
canreinvite=no
qualify=3000
disallow=all
allow=ulaw
allow=alaw
call-limit=1
deny=0.0.0.0/0
permit=194.190.78.0/24
[007]
type=friend
username=dima@home
secret=XXX
nat=yes ; This phone may be natted
host=dynamic
canreinvite=no
qualify=3000
disallow=all
allow=ulaw
allow=alaw
call-limit=1
deny=0.0.0.0/0
permit=0.0.0.0/0
extension.conf
[general]
static = yes
writeprotect = no
DIAL_OPTIONS = tTrRwW
TIMEFORMAT = kM
TONEZONE = ru
[from-internal]
exten => _00000X,1,Dial(SIP/${EXTEN})
exten => _0X,1,Dial(IAX2/home-office/${EXTEN},25,Tt)
exten => _00X,1,Dial(IAX2/home-office/${EXTEN},25,Tt)
exten => _89XXXXXXXXX,1,Dial(SIP/07${EXTEN:1}@pctel,50,Tt)
exten => _8XXXX.,1,Dial(SIP/07${EXTEN:1}@pctel,50,Tt)
exten => _810XXX.,1,Dial(SIP/${EXTEN:2}@pctel,50,Tt)
Сломал себе всю голову как такое могло быть
_________________
Intel(R) Xeon(R) QUAD CPU X3360 @ 2.83GHz / 4 GB / raid1 Array Size : 966791616 (922.00 GiB 989.99 GB) Raid Devices : 2 / Debian squeeze 6.0 ( 2.6.32-5)
Cisco 7940, Cisco 7912, Yearlink T28, Linksys SPA 942, Linksys SPA8000 x 3
| Код: |
| allowguest=no |
есть?
_________________
Intel(R) Xeon(R) QUAD CPU X3360 @ 2.83GHz / 4 GB / raid1 Array Size : 966791616 (922.00 GiB 989.99 GB) Raid Devices : 2 / Debian squeeze 6.0 ( 2.6.32-5)
Cisco 7940, Cisco 7912, Yearlink T28, Linksys SPA 942, Linksys SPA8000 x 3
Посоветую что надо переделать:
1) Дефолтный контекст должен быть таким:
| Код: |
| [default] exten => _X.,1,Hangup() ; exten => s,1,Hangup() ; |
2) Почему не описан контекст у пользователей 000, 001, 007? Обязательно описать куда будут валиться звонки от них!
3) Есть нужда в
| Код: |
| deny=0.0.0.0/0 permit=0.0.0.0/0 |
??
Надо сузить диапазон до тех адресов, с которых гарантировано придёт регистрация.
4) Почему не разделить контексты инклюдом. Т.е правила на выход в город/межгород сделать инклюдом в общий план. Тогда для нужных пользователей можно просто запретить м/г и м/н.
5) Изменить ваши строчки:
| Код: |
| exten => _89XXXXXXXXX,1,Dial(SIP/07${EXTEN:1}@pctel,50,Tt) exten => _8XXXX.,1,Dial(SIP/07${EXTEN:1}@pctel,50,Tt) exten => _810XXX.,1,Dial(SIP/${EXTEN:2}@pctel,50,Tt) |
на такие (думаю разберётесь что для чего):
| Код: |
| ;для исключения инъекции в рингплан левыми символами надо делать так, попутно пускаем только с CallerID по маске 0XX exten => _89XXXXXXXXX/0ХХ,1,Set(SAFE_EXTEN=${FILTER(0-9,${EXTEN})}) exten => _89XXXXXXXXX/0ХХ,n,ExecIf($[${EXTEN} != ${SAFE_EXTEN}]?Hangup) exten => _89XXXXXXXXX/0ХХ,n,Dial(SIP/07${SAFE_EXTEN:1}@pctel,50,Tt) ... |
Для _810 тоже самое. Для России можно сузить маску номера до "_8[348]XXXXXXXXX".
6) Можно сделать лимит по времени исходящего вызова в команде Dial с опцией S(x), где x-количество сек через которые вызов отобьёт.
7) Можно сделать лимит о количеству исходящих вызовов. Используется с GROUP и GROUP_COUNT например такого вида (в этот кусок можно кидать при помощи Gosub ):
| Код: |
| exten => s,1,Set(GROUP=outgoing_pctel) exten => s,n,Set(outgoing_limit=2) exten => s,n,ExecIf($[${GROUP_COUNT(outgoing_pctel)} > ${outgoing_limit}]?Hangup) ... |
Удачи!!