Detect running out of RTP ports

Configuring synchronization, sensors, and optimizations
Post Reply
User avatar
CRM User
Posts: 138
Joined: Sun Nov 27, 2016 3:41 pm

Detect running out of RTP ports

Post by CRM User » Thu Oct 25, 2018 5:33 pm

Our PBX is being attacked regularly, and the DoS attack is causing Asterisk to run out of free RTP ports. Existing calls work fine, but new calls fail in Asterisk.

Why won't HAAst automatically failover in this situation?
Account for questions transferred from CRM system
User avatar
Telium Support
Posts: 184
Joined: Sun Nov 27, 2016 3:27 pm

Re: Detect running out of RTP ports

Post by Telium Support » Thu Oct 25, 2018 5:37 pm

HAAst is correctly NOT failing over because your PBX is operational and in-progress calls remain up. From HAAst's perspective your PBX has reached capacity (but is still operational).

First of all, be careful you don't try to solve a security problem with an HA solution. Even if HAAst fails over to the other node, then that other node will subsequently be subject to those same DoS attacks and it will fail back, etc. So HA failover is not a solution. If you want HAAst to failover once your number of RTP ports in use reach a threshold you set, you can setup a HAAst sensor to monitor the number of RTP ports in use and factor this into each node's health score. Then, HAAst will failover once the threshold you set for that sensor has been reached.

Second, a more appropriate solution is to block the DoS attacked. Have a look at our Security for Asterisk product (http://www.telium.ca/?secast) which is designed to block DoS attacks (and a lot more).
Post Reply