today morning someone from isreal hacked my asterisk server.
i have blocked his ip as well closed all the ports to my asterisk server in my router.
but still in my asterisk debug its showing the below sip traffic.
220.127.116.11 is the hackers ip and i dont know wat it is 18.104.22.168 , why retransmitting.
can anyone help me how to block it , as it is very crucial for me
Retransmitting #4 (NAT) to 22.214.171.124:5060:
OPTIONS sip:email@example.com:5060 SIP/2.0
Via: SIP/2.0/UDP 192.168.1.100:5060;branch=z9hG4bK0f6668b3;rport
From: "Unknown" <sip:Unknown@192.168.1.100>;tag=as13f2046e
CSeq: 102 OPTIONS
Date: Mon, 18 Jun 2012 05:44:44 GMT
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO
Supported: replaces, timer