I have a requirement, where i need to configure to set up a maximum no. of allowable concurrent calls . If the number exceeds this, a busy signal is sent back ..
Any insights/ suggesions appreciated ..
Thanks Mike
--------------------------------- Yahoo! Mail - Helps protect you from nasty viruses.
Hi!
Mike W wrote:
I have a requirement, where i need to configure to set up a maximum no. of allowable concurrent calls . If the number exceeds this, a busy signal is sent back ..
There is a short discussion on serdev@: http://lists.iptel.org/pipermail/serdev/2006-February/006694.html
Please take that discussion into account ;)
Hendrik
Thanks for the pointer, i need to look at the total calls at the proxy. It could be a counter that increments at a INVITE (and subsequent OK) and decrements at a BYE/ CANCEL
Is this something that can be configured/ customised ?
thanks m
btw, what would be a good way to search thor' the mailing list archives ?
Hendrik Scholz hendrik.scholz@freenet-ag.de wrote: Hi!
Mike W wrote:
I have a requirement, where i need to configure to set up a maximum no. of allowable concurrent calls . If the number exceeds this, a busy signal is sent back ..
There is a short discussion on serdev@: http://lists.iptel.org/pipermail/serdev/2006-February/006694.html
Please take that discussion into account ;)
Hendrik
Hi!
Mike W wrote:
Thanks for the pointer, i need to look at the total calls at the proxy. It could be a counter that increments at a INVITE (and subsequent OK) and decrements at a BYE/ CANCEL
You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)
Is this something that can be configured/ customised ?
If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS.
What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures.
Hendrik
In case he's encountering DOS attacks SER is IMHO the wrong place to defend against these attacks. A smart Firewall should do that job. In case it's only a bandwith problem again a firewall or any kind of QoS device could manage the bandwith "before" SER. In case he really wants to limit calls per user some kind of call statefull module would be requiered in SER. As far as i have been told recently some basic work related to call state tracking is done in the current development iof a module call b2buac or similar. This might deliver the basic mechanisms needed to implement call limits per user.
- Frank
-----Original Message----- From: serusers-bounces@lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Hendrik Scholz Sent: Wednesday, February 08, 2006 4:27 PM To: Mike W Cc: serusers@lists.iptel.org Subject: Re: [Serusers] limiting no. of concurrent calls ?
Hi!
Mike W wrote:
Thanks for the pointer, i need to look at the total calls
at the proxy.
It could be a counter that increments at a INVITE (and
subsequent OK)
and decrements at a BYE/ CANCEL
You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)
Is this something that can be configured/ customised ?
If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS.
What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures.
Hendrik
-- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz@freenet-ag.de
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
Need to write a module, nothin available as such.
From: "Frank Fischer" frank.fischer@digitalnomads.ch To: "'Hendrik Scholz'" hendrik.scholz@freenet-ag.de,"'Mike W'" mwick00@yahoo.com CC: serusers@lists.iptel.org Subject: RE: [Serusers] limiting no. of concurrent calls ? Date: Wed, 8 Feb 2006 18:16:47 +0100
In case he's encountering DOS attacks SER is IMHO the wrong place to defend against these attacks. A smart Firewall should do that job. In case it's only a bandwith problem again a firewall or any kind of QoS device could manage the bandwith "before" SER. In case he really wants to limit calls per user some kind of call statefull module would be requiered in SER. As far as i have been told recently some basic work related to call state tracking is done in the current development iof a module call b2buac or similar. This might deliver the basic mechanisms needed to implement call limits per user.
- Frank
-----Original Message----- From: serusers-bounces@lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Hendrik Scholz Sent: Wednesday, February 08, 2006 4:27 PM To: Mike W Cc: serusers@lists.iptel.org Subject: Re: [Serusers] limiting no. of concurrent calls ?
Hi!
Mike W wrote:
Thanks for the pointer, i need to look at the total calls
at the proxy.
It could be a counter that increments at a INVITE (and
subsequent OK)
and decrements at a BYE/ CANCEL
You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)
Is this something that can be configured/ customised ?
If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS.
What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures.
Hendrik
-- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz@freenet-ag.de
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
_________________________________________________________________ NRIs Zero balance Account. FREE Money Transfers with FREE DVD https://www.online.citibank.co.in/portal/rca_msntagofline.htm
Thanks for all the insights ! Yes, its to limit the no. of calls on the server, set a high watermark So guess should start by looking at the ratelimit module ..
thanks -m
Kapil Dhawan sersavvy@hotmail.com wrote: Need to write a module, nothin available as such.
From: "Frank Fischer" To: "'Hendrik Scholz'" ,"'Mike W'"
CC: serusers@lists.iptel.org Subject: RE: [Serusers] limiting no. of concurrent calls ? Date: Wed, 8 Feb 2006 18:16:47 +0100
In case he's encountering DOS attacks SER is IMHO the wrong place to defend against these attacks. A smart Firewall should do that job. In case it's only a bandwith problem again a firewall or any kind of QoS device could manage the bandwith "before" SER. In case he really wants to limit calls per user some kind of call statefull module would be requiered in SER. As far as i have been told recently some basic work related to call state tracking is done in the current development iof a module call b2buac or similar. This might deliver the basic mechanisms needed to implement call limits per user.
- Frank
-----Original Message----- From: serusers-bounces@lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Hendrik Scholz Sent: Wednesday, February 08, 2006 4:27 PM To: Mike W Cc: serusers@lists.iptel.org Subject: Re: [Serusers] limiting no. of concurrent calls ?
Hi!
Mike W wrote:
Thanks for the pointer, i need to look at the total calls
at the proxy.
It could be a counter that increments at a INVITE (and
subsequent OK)
and decrements at a BYE/ CANCEL
You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)
Is this something that can be configured/ customised ?
If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS.
What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures.
Hendrik
-- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz@freenet-ag.de
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
_________________________________________________________________ NRIs Zero balance Account. FREE Money Transfers with FREE DVD https://www.online.citibank.co.in/portal/rca_msntagofline.htm
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
-
Frank Fischer -
Hendrik Scholz -
Kapil Dhawan -
Mike W