The release of Acme Packet ECZ730m1 software introduces the ACLI command fraud-protection. This allows the SBC to store multiple black lists, white lists, SIP redirect lists, and rate limit entries for fraud prevention and call control. Multiple lists may exist where entries are stored in separate XML files.
Lists (XML files) may be initially created through the command line (ACLI) or web interface. If the preference is to manage lists manually then once a list is created it will need to be downloaded and the XML file(s) edited with a text editor, similar to managing Local Route Tables (LRT). Otherwise, all entries may be added, modified, or deleted using the web interface.
Below is an example of the GUI configuration elements for managing fraud-protection
Below is an example of creating a new fraud-protection XML file in the ACLI called test.xml
In the example below, the Whitelist section permits all calls based on the From header matching acmepacket.com through the realm called peer, as well as calls to based on the To header specific UK phone number on any realm (the * is a wildcard for all realms) . The Blacklist section rejects calls based on a variety of criteria. Note that even though calls are blocked to +44 based on the To header, calls to +441189240000 are permitted since this is a more specific match in the Whitelist.
The command show fraud-protection all will shoe whether fraud definitions and whether any matches exist
The command show fraud-protection stats show a summary version of matches