p1sec / sigfw Goto Github PK

[ERROR]
[ERROR]
[ERROR] For more information about the errors and possible solutions, please read the following articles:
[ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/DependencyResolutionException

[ss7fw.SS7Firewall.main()] WARN org.mobicents.protocols.sctp.ManagementImpl - Failed to load the SCTP configuration file.
XmlSctpFirewall/sctp_mgmt_sctp.xml (No such file or directory)

//(while the file is there.) AND AFTER SOME LINES:

10581 [Thread-10] ERROR org.mobicents.protocols.sctp.SelectorThread - Exception while finishing connection for Association=sctp_from_firewall_to_server
java.net.ConnectException: Connection refused
at sun.nio.ch.sctp.SctpChannelImpl.checkConnect(Native Method)
at sun.nio.ch.sctp.SctpChannelImpl.finishConnect(SctpChannelImpl.java:482)
at org.mobicents.protocols.sctp.SelectorThread.finishConnectionSctp(SelectorThread.java:381)
at org.mobicents.protocols.sctp.SelectorThread.finishConnection(SelectorThread.java:366)
at org.mobicents.protocols.sctp.SelectorThread.run(SelectorThread.java:151)
at java.lang.Thread.run(Thread.java:748)

I have downloaded and built the project as per the instructions provided in readme and jss7 branch.
Can you please help where to find diameter.pcap & sigtran.pcap.

mvn clean install -Dmaven.test.skip=true

fails with error 
[INFO] BUILD FAILURE
[INFO] ------------------------------------------------------------------------
[INFO] Total time: 06:37 min
[INFO] Finished at: 2018-10-01T12:23:32-06:00
[INFO] Final Memory: 50M/89M
[INFO] ------------------------------------------------------------------------
[ERROR] Failed to execute goal org.apache.maven.plugins:maven-compiler-plugin:2.0.2:compile (default-compile) on project scheduler: Compilation failure: Compilation failure: 
[ERROR] error: Source option 5 is no longer supported. Use 6 or later.
[ERROR] error: Target option 1.5 is no longer supported. Use 1.6 or later.
[ERROR] -> [Help 1]
[ERROR] 
[ERROR] To see the full stack trace of the errors, re-run Maven with the -e switch.
[ERROR] Re-run Maven using the -X switch to enable full debug logging.
[ERROR] 
[ERROR] For more information about the errors and possible solutions, please read the following articles:
[ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/MojoFailureException
[ERROR] 
[ERROR] After correcting the problems, you can resume the build with the command
[ERROR]   mvn <goals> -rf :scheduler

hardware configuration: HP Elite Desktop 00 G1

OS: UBuntu 18.04

Kernel (e.g. uname -a): Linux stc0042223 4.15.0-36-generic #39-Ubuntu SMP Mon Sep 24 16:19:09 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
Package: maven
Architecture: all
Version: 3.5.2-2
Priority: optional
Section: universe/java
Origin: Ubuntu

mvn -version
Apache Maven 3.5.2
Maven home: /usr/share/maven
Java version: 10.0.2, vendor: Oracle Corporation
Java home: /usr/lib/jvm/java-10-oracle
Default locale: en_CA, platform encoding: UTF-8
OS name: "linux", version: "4.15.0-36-generic", arch: "amd64", family: "unix"

Hi All,

Sorry to raise another ticket, I just have one query in regards to the SS7 firewall.
Is there any way to find the alerts raised/ packets dropped etc.? I don't have MThreat, so trying to figure out how I would see malicious traffic if flagged.

Thanks guys,

Chris

i have all the systems configured, i.e i have restcomm smsc gateway, by which we are sending messages over ss7 through smsc gateway between two systems (laptops) using jss7 simulator and sip phone.

Now i want know how i configure the vm between the two systems so that i can get logs of messages on firewall between them. i know that vm uses enp0s9 interface to capture traffic but i need some guidance.
Thank you.

Failed to execute goal on project SigFW: Could not resolve dependencies for project com.p1sec:SigFW:jar:1.0.0: The following artifacts could not be resolved: com.sun.jdmk:jmxtools:jar:1.2.1, com.vendor.dialogic:gctapi:jar:6.7.1, com.p1sec.sigfw:SigFW_interface:jar:1.0: Failure to find com.sun.jdmk:jmxtools:jar:1.2.1 in https://repo.maven.apache.org/maven2 was cached in the local repository, resolution will not be reattempted until the update interval of central has elapsed or updates are forced -> [Help 1]

I read the doc of SigFW, but i could not understand the part where it says how to enable mthreat i.e.
"Every firewalled event can be anonymized and send to mThreat. This optional capability and the
mThreat URL should be first enabled in the configuration file."
But i donot understand the file, i mean how to enable it here?
Your help will be highly appreciated.

Hi All,

I finally managed to build this project without build errors on Ubuntu 20, but when I try to run the FW with this command:
mvn exec:java -Dexec.mainClass="ss7fw.SS7Firewall

It stalls with the below null pointers:

s7fw.SS7Firewall main
SEVERE: null
java.lang.NullPointerException
at ss7fw.SS7Firewall.main(SS7Firewall.java:2566)
at org.codehaus.mojo.exec.ExecJavaMojo$1.run(ExecJavaMojo.java:254)
at java.base/java.lang.Thread.run(Thread.java:829)

Has anyone seen this before, or able to help?

Thanks

Chris

How to monitor GSM traffic on SigFW honeypot?
What are the configurations of IP addresses of client and host?