Updated:    14/01/2025   1115 AEDT

SIP Protection &
why it's IMPORTANT

Cloud Kinnekt's SIP Protect Module provides protection from SIP attacks.
Brute-force break-in attempts and Denial of Service attacks are quite frequent and an unpredictable threat. 

Unprotected CloudPBX systems are very sensitive to these kind of attacks.
The most common consequences of this kind of network attack are system downtime, call quality issues due to an overloaded network, direct financial loss due to network instability and unauthorised calls being made on your account to high call rate overseas countries.

Our SIP Protection Module's main purpose is to prevent those attacks. 


Advanced Threat Detection

Unlike other similar solutions, SIP Protect works with LIVE SIP traffic, constantly monitoring SIP packets being received.
Potential attacks are instantly detected and SIP Protect updates the firewall rules and blocks IP addresses from which the attack is coming for a specific amount of time, these are then listed in the table to the right and updated regularly.
To detect SIP attacks, SIP Protect uses the following advanced detection techniques: Pattern recognition, SIP Scanners protection (immediately blocking known SIP scanners), TFTP brute force protection, and SIP protocol anomaly detection.

Dynamic Blocking and Unblocking

SIP Protect features a fully automated attack protection system which blocks attacks more efficiently than most other solutions.

In the case of an attack, it updates the firewall rules and blocks IP addresses from which the attack is coming for a specific amount of time.

If attacks stop in a certain period of time, SIP Protect unblocks compromised IP addresses automatically.


Auto Provisioning Attack Detection

Auto-provisioning service is generally considered one of the most vulnerable spots of a CloudPBX system.

SIP Protect covers this segment as well through the integrated TFTP Brute Force attack detection. An active attacker can redirect profile provisioning request and change the configuration parameters. Then the attacker can redirect phone calls through a malicious server, change passwords, turn the phone into a bug, and exfiltrate system logs (including those numbers dialed by a user).


SYD Cluster

IP Address     Unblock In

14.202.11.70

27.33.50.170

45.118.65.0

58.84.128.251

58.84.129.64

58.84.129.185

58.84.136.7

58.84.136.11

58.84.136.21

58.84.136.40

58.84.136.49

58.84.136.68

58.84.136.87

58.84.136.91

58.84.136.98

58.84.136.108

58.84.136.175

58.84.136.185

58.84.137.12

58.84.137.16

58.84.137.19

58.84.137.29

58.84.137.39

58.84.137.66

58.84.137.88

58.84.137.117

58.84.137.124

58.84.137.125

58.84.137.160

58.84.137.183

58.84.137.206

58.84.137.227

58.84.137.228

58.84.137.253

58.84.143.22

58.84.143.27

58.84.143.126

58.84.143.156

58.84.143.200

58.84.145.39

58.84.145.165

58.84.180.87

58.84.180.172

58.84.180.236

58.84.184.122

58.84.184.158

58.84.184.214

58.84.185.42

58.84.185.128

58.84.185.153

58.84.185.199

58.84.185.235

58.84.185.253

94.23.145.155

103.76.159.229

103.76.159.236

103.93.151.87

103.95.114.50

103.95.114.59

103.95.114.79

103.95.114.80

103.95.114.82

103.95.114.83

103.246.100.77

115.129.105.183

116.204.144.164

116.204.144.169

116.204.144.213

116.204.144.230

116.204.144.231

116.240.58.198

117.20.68.78

117.20.68.86

117.20.68.99

117.20.68.166

117.20.68.249

117.20.69.1

117.20.69.17

117.20.69.18

117.20.69.94

117.20.69.110

118.67.11.222

118.67.12.99

118.209.217.133

119.12.209.12

119.12.209.15

119.12.215.1

119.12.215.2

119.12.215.3

119.12.215.4

119.12.215.5

119.12.215.6

119.12.215.7

119.12.215.8

119.12.215.9

119.12.215.10

119.12.215.11

119.12.215.12

119.12.215.13

119.12.215.14

119.12.215.15

119.12.215.16

119.12.215.17

119.12.215.18

119.12.215.19

119.12.215.20

119.12.215.21

119.12.215.22

119.12.215.23

119.12.215.24

119.12.215.25

119.12.215.26

119.12.215.27

119.12.215.28

119.12.215.29

119.12.215.30

119.12.215.31

119.12.215.32

119.12.215.33

119.12.215.34

119.12.215.38

119.12.215.39

119.12.215.40

119.12.215.41

119.12.215.42

119.12.215.43

119.12.215.44

119.12.215.45

119.12.215.46

119.12.215.47

119.12.215.48

119.12.215.49

119.12.215.50

119.12.215.51

119.12.215.52

119.12.215.53

119.12.215.54

119.12.215.55

119.12.215.56

119.12.215.57

119.12.215.58

119.12.215.59

119.12.215.60

119.12.215.61

119.12.215.62

119.18.1.54

119.18.1.207

119.18.2.146

119.77.88.152

119.148.98.14

119.148.98.221

121.45.101.214

121.45.102.26

121.200.5.170

122.150.107.213

122.150.190.81

122.150.190.230

122.150.217.90

122.150.217.242

122.150.217.253

122.151.166.119

123.243.33.64

124.168.196.13

124.170.36.40

136.158.42.101

144.6.196.190

146.88.22.0

146.88.22.1

146.88.22.4

146.88.22.5

146.88.22.6

146.88.22.7

146.88.22.10

146.88.22.11

146.88.22.12

146.88.22.13

146.88.22.14

146.88.22.17

146.88.22.18

146.88.22.24

146.88.22.25

146.88.22.27

146.88.22.29

159.196.12.7

159.196.12.17

159.196.12.21

159.196.15.17

159.196.132.9

159.196.168.110

159.196.170.181

172.28.128.13

172.28.130.144

172.28.130.149

172.28.130.245

172.28.131.80

172.28.131.86

172.28.131.102

172.28.132.150

172.28.132.207

172.28.132.221

172.28.132.244

172.28.132.249

172.28.135.2

172.28.136.75

172.28.136.89

172.28.136.118

172.28.136.120

172.28.136.149

172.28.136.170

172.28.136.237

172.28.136.241

172.28.142.159

172.28.143.196

172.28.143.209

172.28.143.210

172.28.143.216

172.28.143.217

172.28.143.251

172.28.160.7

172.28.160.18

172.28.160.45

172.28.160.46

172.28.160.115

172.28.189.12

172.28.189.235

172.28.190.203

172.28.191.37

172.28.191.39

172.28.191.63

172.28.191.79

172.28.192.13

172.28.192.17

172.28.192.18

172.28.192.19

172.28.192.21

172.28.192.30

172.28.192.32

172.28.192.33

172.28.192.43

172.28.192.45

172.28.192.79

172.28.192.102

172.28.192.112

172.28.192.120

172.28.192.121

172.28.192.169

172.28.192.178

172.28.192.191

172.28.192.215

172.28.192.216

180.150.36.11

180.150.36.152

180.150.36.211

180.150.37.61

180.150.37.120

180.150.37.150

180.150.37.236

180.150.38.50

180.150.38.100

180.150.38.125

180.150.38.129

180.150.38.143

180.150.39.98

180.150.80.173

180.150.112.219

185.205.244.166

192.168.20.6

194.193.186.167

202.7.247.194

202.7.248.5

202.7.248.43

202.86.52.130

203.30.2.1

203.30.4.66

203.30.4.184

203.56.146.142

203.121.198.0

203.121.198.1

203.121.198.7

203.121.198.13

203.121.198.16

203.121.198.21

203.121.198.24

203.121.198.25

203.121.198.26

203.121.198.27

203.121.198.30

203.121.198.32

203.121.198.48

203.121.198.55

203.121.198.61

203.121.198.64

203.121.198.86

203.121.221.154

203.129.17.139

203.220.167.171

BNE Cluster

IP Address     Unblock In