ruhnet
/
kazoo-configs-kamailio
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 183 Wiki Activity
Browse Source

do not check trusted sources

3.20
SIPLABS, LLC 11 years ago
parent
85cba65aaa
commit
ce290078f0
2 changed files with 13 additions and 0 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +7
    -0
      kamailio/acl-role.cfg
  2. +6
    -0
      kamailio/rate-limiter-role.cfg

+ 7
- 0
kamailio/acl-role.cfg View File

@ -15,6 +15,13 @@ modparam("htable", "htable", "acl=>initval=-1;autoexpire=7200")
## Route for ACL functionality ## Route for ACL functionality
route[ACL_CHECK] { route[ACL_CHECK] {
# If packet came from platform or from 4 class MERA, do not check it
if (isflagset(FLAG_INTERNALLY_SOURCED) || isflagset(FLAG_TRUSTED_SOURCE) ) {
xlog("L_DEBUG", "$ci |ACL| Trusted source IP($si) ignoring");
return;
}
if (isflagset(FLAG_IS_REPLY)) { if (isflagset(FLAG_IS_REPLY)) {
$var(sip-packet) = $rs; $var(sip-packet) = $rs;
} else { } else {


+ 6
- 0
kamailio/rate-limiter-role.cfg View File

@ -13,6 +13,12 @@ modparam("htable", "htable", "rate_limits=>initval=-1;autoexpire=60") # init
route[DOS_PREVENTION] { route[DOS_PREVENTION] {
# If packet came from platform or from 4 class MERA, do not check it
if (isflagset(FLAG_INTERNALLY_SOURCED) || isflagset(FLAG_TRUSTED_SOURCE) ) {
xlog("L_DEBUG", "$ci |RL| Trusted source IP($si) ignoring");
return;
}
# Initially we do not want to get data # Initially we do not want to get data
$var(with-realm-request) = "false"; $var(with-realm-request) = "false";
$var(with-realm-total) = "false"; $var(with-realm-total) = "false";


Write Preview
Loading…
Cancel
Save