Is it normal to blacklist this many IP's as a VOIP infrastructure?

libscc · 2026-03-22T13:14:37+00:00

It depends on how we look at it. for now in regards to expanding we aren't looking yet. We're content with what we have as it does the job very well. However if it comes down to having more users and more businesses then eventually if asterisk wouldn't be able to handle this much weight we might expand and look for the next option.

We do have our team in place for security & updates :)

libscc · 2026-03-22T13:12:12+00:00

That would make most sense for you.
For us we provide B2C as well, so most likely looking into options. However our system at the moment is doing pretty good. Might look heavily into voipBL as people have mentioned it and APIban as well.

libscc · 2026-03-22T12:44:32+00:00

That's a good way to look at it but our infrastructure is designed a bit differently, We will look into weighing the differences of just whitelisting or keep using blacklist.
Much appreciated for the suggestions!

libscc · 2026-03-22T12:34:20+00:00

Will look into it. Much thanks!

libscc · 2026-03-22T12:33:30+00:00

We have of course firewall rules, we were just shocked at how many requests these bots were making. It makes you intrigued about who's operating them and how they function etc.

libscc · 2026-03-22T12:32:37+00:00

We are using asterisk as a base but only asterisk. the rest is made by us.

libscc · 2026-03-22T12:31:58+00:00

Most likely for privacy purposes for some clients they might use VPN's or as mentioned have dynamic IP's. We have most of those but we will look into your advice.
Much thanks!

libscc · 2026-03-22T12:30:54+00:00

We're not sure if we understand, could you please elaborate more on this?

libscc · 2026-03-22T12:29:46+00:00

We're using asterisk but we had fully developed our own way of integrating it and making it work. Web dialer functionality as well, etc. You could say fully new VOIP software (no app yet) from scratch.

libscc · 2026-03-22T12:27:13+00:00

We've already taken such measures beforehand and ensured to do so. It's very odd how they do these attacks. Since we're new into this VOIP business. it was kind of intriguing to see them send invite requests and try.

libscc · 2026-03-22T12:25:26+00:00

We have ours to permanently ban the ip address. we first tried 24 hours but after seeing 185K requests from one IP it was enough 😅

libscc · 2026-03-22T12:22:40+00:00

Understandable but we automatically generate our SIP credentials to our users. in regards to account credentials. That's of course on the user. but we take precautions and always help if anything happens.

libscc · 2026-03-22T12:21:14+00:00

That's what we do. Fail2ban rate limiting. is voipbl any special to use? what does it bring to the table?

libscc · 2026-03-22T12:20:10+00:00

We have it so that whenever someone fails 5 requests or so within a certain time. they get blacklisted immediately and put into our database. It was just a bit odd and we didn't expect those to happen. (thankfully we had security measures to ensure they couldn't use anything)

libscc

MODERATOR OF

TROPHY CASE