From dc0ea82a0561773bbb0b5e2e6e659fe6d0d0b2c0 Mon Sep 17 00:00:00 2001
From: FusionPBX <markjcrane@gmail.com>
Date: Wed, 2 May 2018 13:26:22 -0600
Subject: [PATCH] Update jail.local

---
 debian/resources/fail2ban/jail.local | 34 +++++++++++++++++++++++-----
 1 file changed, 28 insertions(+), 6 deletions(-)

diff --git a/debian/resources/fail2ban/jail.local b/debian/resources/fail2ban/jail.local
index 122bc95..36d5ddb 100755
--- a/debian/resources/fail2ban/jail.local
+++ b/debian/resources/fail2ban/jail.local
@@ -55,24 +55,46 @@ maxretry = 1
 findtime = 30
 bantime  = 86400
 
-[freeswitch-dos-udp]
+[freeswitch-sip_auth_failure-udp]
 enabled  = true
 port     = 5060:5091
 protocol = all
-filter   = freeswitch-dos
+filter   = freeswitch-sip_auth_failure
 logpath  = /var/log/freeswitch/freeswitch.log
-action   = iptables-multiport[name=freeswitch-dos-udp, port="5060:5090", protocol=udp]
+action   = iptables-multiport[name=freeswitch-sip_auth_failure-udp, port="5060:5090", protocol=udp]
 maxretry = 50
 findtime = 30
 bantime  = 6000
 
-[freeswitch-dos-tcp]
+[freeswitch-freeswitch-sip_auth_challenge-tcp]
 enabled  = true
 port     = 5060:5091
 protocol = all
-filter   = freeswitch-dos
+filter   = freeswitch-sip_auth_failure
 logpath  = /var/log/freeswitch/freeswitch.log
-action   = iptables-multiport[name=freeswitch-dos-tcp, port="5060:5090", protocol=tcp]
+action   = iptables-multiport[name=freeswitch-sip_auth_failure-tcp, port="5060:5090", protocol=tcp]
+maxretry = 10
+findtime = 30
+bantime  = 7200
+
+[freeswitch-freeswitch-sip_auth_challenge-udp]
+enabled  = true
+port     = 5060:5091
+protocol = all
+filter   = freeswitch-sip_auth_challenge
+logpath  = /var/log/freeswitch/freeswitch.log
+action   = iptables-multiport[name=freeswitch-sip_auth_challenge-tcp, port="5060:5090", protocol=udp]
+maxretry = 50
+findtime = 30
+bantime  = 7200
+
+[freeswitch-sip_auth_challenge-tcp]
+enabled  = true
+port     = 5060:5091
+protocol = all
+filter   = freeswitch-sip_auth_challenge
+logpath  = /var/log/freeswitch/freeswitch.log
+action   = iptables-multiport[name=freeswitch-sip_auth_challenge-tcp, port="5060:5090", protocol=tcp]
 maxretry = 50
 findtime = 30
 bantime  = 7200