[Serusers] limiting no. of concurrent calls ? - sr-users - kamailio.org

List overview All Threads
Download

[Serusers] limiting no. of concurrent calls ?

[Serusers] Precence Module

[Serusers] Multi-Domains / RADIUS...

Mike W

8 Feb 2006 8 Feb '06

7:21 a.m.

I have a requirement, where i need to configure to set up a maximum no. of allowable concurrent calls . If the number exceeds this, a busy signal is sent back .. Any insights/ suggesions appreciated .. Thanks Mike --------------------------------- Yahoo! Mail - Helps protect you from nasty viruses.

Attachments:

attachment.html (text/html — 427 bytes)

Reply

Show replies by date

Hendrik Scholz

8 Feb 8 Feb

7:47 a.m.

Hi! Mike W wrote:

I have a requirement, where i need to configure to set up a maximum no. of allowable concurrent calls . If the number exceeds this, a busy signal is sent back ..

There is a short discussion on serdev@: http://lists.iptel.org/pipermail/serdev/2006-February/006694.html Please take that discussion into account ;) Hendrik -- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz(a)freenet-ag.de

Reply

Mike W

10:09 a.m.

Thanks for the pointer, i need to look at the total calls at the proxy. It could be a counter that increments at a INVITE (and subsequent OK) and decrements at a BYE/ CANCEL Is this something that can be configured/ customised ? thanks m btw, what would be a good way to search thor' the mailing list archives ? Hendrik Scholz <hendrik.scholz(a)freenet-ag.de> wrote: Hi! Mike W wrote:

I have a requirement, where i need to configure to set up a maximum no. of allowable concurrent calls . If the number exceeds this, a busy signal is sent back ..

There is a short discussion on serdev@: http://lists.iptel.org/pipermail/serdev/2006-February/006694.html Please take that discussion into account ;) Hendrik -- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz(a)freenet-ag.de --------------------------------- Brings words and photos together (easily) with PhotoMail - it's free and works with Yahoo! Mail.

Reply

Hendrik Scholz

10:27 a.m.

Hi! Mike W wrote:

Thanks for the pointer, i need to look at the total calls at the proxy. It could be a counter that increments at a INVITE (and subsequent OK) and decrements at a BYE/ CANCEL

You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)

Is this something that can be configured/ customised ?

If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS. What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures. Hendrik -- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz(a)freenet-ag.de

Reply

Frank Fischer

12:16 p.m.

In case he's encountering DOS attacks SER is IMHO the wrong place to defend against these attacks. A smart Firewall should do that job. In case it's only a bandwith problem again a firewall or any kind of QoS device could manage the bandwith "before" SER. In case he really wants to limit calls per user some kind of call statefull module would be requiered in SER. As far as i have been told recently some basic work related to call state tracking is done in the current development iof a module call b2buac or similar. This might deliver the basic mechanisms needed to implement call limits per user. - Frank

-----Original Message----- From: serusers-bounces(a)lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Hendrik Scholz Sent: Wednesday, February 08, 2006 4:27 PM To: Mike W Cc: serusers(a)lists.iptel.org Subject: Re: [Serusers] limiting no. of concurrent calls ? Hi! Mike W wrote:

Thanks for the pointer, i need to look at the total calls

at the proxy.

It could be a counter that increments at a INVITE (and

subsequent OK)

and decrements at a BYE/ CANCEL

You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)

Is this something that can be configured/ customised ?

If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS. What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures. Hendrik -- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz(a)freenet-ag.de _______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

Reply

Kapil Dhawan

11:50 p.m.

Need to write a module, nothin available as such.

From: "Frank Fischer" <frank.fischer(a)digitalnomads.ch> To: "'Hendrik Scholz'" <hendrik.scholz(a)freenet-ag.de>,"'Mike W'" <mwick00(a)yahoo.com> CC: serusers(a)lists.iptel.org Subject: RE: [Serusers] limiting no. of concurrent calls ? Date: Wed, 8 Feb 2006 18:16:47 +0100 In case he's encountering DOS attacks SER is IMHO the wrong place to defend against these attacks. A smart Firewall should do that job. In case it's only a bandwith problem again a firewall or any kind of QoS device could manage the bandwith "before" SER. In case he really wants to limit calls per user some kind of call statefull module would be requiered in SER. As far as i have been told recently some basic work related to call state tracking is done in the current development iof a module call b2buac or similar. This might deliver the basic mechanisms needed to implement call limits per user. - Frank

-----Original Message----- From: serusers-bounces(a)lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Hendrik Scholz Sent: Wednesday, February 08, 2006 4:27 PM To: Mike W Cc: serusers(a)lists.iptel.org Subject: Re: [Serusers] limiting no. of concurrent calls ? Hi! Mike W wrote:

Thanks for the pointer, i need to look at the total calls

at the proxy.

It could be a counter that increments at a INVITE (and

subsequent OK)

and decrements at a BYE/ CANCEL

You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)

Is this something that can be configured/ customised ?

If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS. What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures. Hendrik -- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz(a)freenet-ag.de _______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

_______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

_________________________________________________________________ NRIs Zero balance Account. FREE Money Transfers with FREE DVD https://www.online.citibank.co.in/portal/rca_msntagofline.htm

Reply

Mike W

9 Feb 9 Feb

10:27 a.m.

Thanks for all the insights ! Yes, its to limit the no. of calls on the server, set a high watermark So guess should start by looking at the ratelimit module .. thanks -m Kapil Dhawan <sersavvy(a)hotmail.com> wrote: Need to write a module, nothin available as such.

From: "Frank Fischer" To: "'Hendrik Scholz'" ,"'Mike W'" CC: serusers(a)lists.iptel.org Subject: RE: [Serusers] limiting no. of concurrent calls ? Date: Wed, 8 Feb 2006 18:16:47 +0100 In case he's encountering DOS attacks SER is IMHO the wrong place to defend against these attacks. A smart Firewall should do that job. In case it's only a bandwith problem again a firewall or any kind of QoS device could manage the bandwith "before" SER. In case he really wants to limit calls per user some kind of call statefull module would be requiered in SER. As far as i have been told recently some basic work related to call state tracking is done in the current development iof a module call b2buac or similar. This might deliver the basic mechanisms needed to implement call limits per user. - Frank

-----Original Message----- From: serusers-bounces(a)lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Hendrik Scholz Sent: Wednesday, February 08, 2006 4:27 PM To: Mike W Cc: serusers(a)lists.iptel.org Subject: Re: [Serusers] limiting no. of concurrent calls ? Hi! Mike W wrote:

Thanks for the pointer, i need to look at the total calls

at the proxy.

It could be a counter that increments at a INVITE (and

subsequent OK)

and decrements at a BYE/ CANCEL

You'll still run into the very same problems. You have to take INVITEs without Authentication into account. How about retransmissions? People might want to throw advertisements for Session Border Controllers at you ;)

Is this something that can be configured/ customised ?

If it's the plain number of requests per second that you want to allow not taking any specific behaviour into account you might want to try the ratelimit module from CVS. What's the problem you are facing? Are you seeing DOS-like attacks? I'm asking as I'm interested in implementing countermeasures. Hendrik -- freenet Cityline GmbH, Hamburger Chaussee 2-4, 24114 Kiel, Germany Phone: +49 (0)431 9020552, Fax: +49 (0)431 9020559 Internet: http://www.freenet.de, eMail: hendrik.scholz(a)freenet-ag.de _______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

_______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

_________________________________________________________________ NRIs Zero balance Account. FREE Money Transfers with FREE DVD https://www.online.citibank.co.in/portal/rca_msntagofline.htm __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com

Reply

6829

days inactive

6830

days old

sr-users@lists.kamailio.org

Manage subscription

6 comments

4 participants

tags (0)

participants (4)

Frank Fischer
Hendrik Scholz
Kapil Dhawan
Mike W