User:Sfiggins/Broadworks Controlled Registration

From Labrats.us

< User:Sfiggins

Revision as of 00:16, 27 May 2019 by Sfiggins (talk | contribs) (Created page with " === Grab packet capture from cn10-inverness-co on eth1, and format into the top 110 hosts. # timeout 60s /usr/sbin/tcpdump -n -i eth1 port 5060 and dst 64.1.10.130 > /tmp/s...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

=== Grab packet capture from cn10-inverness-co on eth1, and format into the top 110 hosts.

# timeout 60s /usr/sbin/tcpdump -n -i eth1 port 5060 and dst 64.1.10.130 > /tmp/sbc.pcap; cat /tmp/pcap | awk '{print $3}' | perl -npe 's/^([0-9]+\.[0-9]+\.[0-9]+\.[0-9]+).*$/$1/g' | sort | uniq -c | sort -n | tail -n 110 | awk '{print "deny ip host "$2" host 64.1.10.130"}' | sort -n  | uniq

Retrieved from "https://www.labrats.us//wiki/index.php?title=User:Sfiggins/Broadworks_Controlled_Registration&oldid=154"

Navigation menu