In this section:
Overview
The SBC Edge generates CDRs and logs what Ribbon Protect uses to identify bad actors (bad actors are identified as unwanted calls that attempt to threaten security, disrupt networks, perform fraudulent behavior, etc.). When Ribbon Protect suspects and identifies bad actors, the SBC Edge uses this data to blacklist and block these bad actors from entering your network. The REST API is used in addition to Ribbon Protect to enable bad actors to be blacklisted by the SBC Edge. When bad actors are identified by Ribbon Protect, they are reflected in the SBC Edge WebUI's "Bad Actors" table.
SBC Edge supports blacklisting four types of bad actors:
- Calling Number
- Called Number
- Source IPv4 Address
- Source IPv6 Address
The steps below are required to configure and display bad actors via Ribbon SBC Edge.
The maximum number of Bad Actor listed by product is as follows:
Prerequisites
Create REST user in SBC Edge
To use REST API, you must create a local user with REST access level.
Create a user in the SBC Edge as follows:
- Access the WebUI and login to the SBC Edge.
- In the Web GUI, click the Settings tab.
In the left navigation pane, go to Security > Users > Local User Management.
Click the Create Local User (
) icon at the top of the Local User View page. The Create Local User screen appears.- Enter user name in the User Name field.
- Enter and confirm the user’s new password in Password and Confirm Password fields.
- From the Access Level drop down list, select REST.
Click OK. The REST user is created and the Local Users Table screen displays the newly created REST user.
Configure Country Code via WebUI
Through the WebUI, configure the country code the SBC Edge resides in; the SBC Edge uses the country code to convert a PSTN Calling/Called Number to E.164 format and search for it in the internal data structures.
Configure the Country Code via WebUI as follows:
- In the WebUI, click the Settings tab.
In the left navigation page, go to System > Node-Level Settings.
From the Country Code drop down list, select the applicable country.
Click Apply.
Configure REST API to Create/Display/Delete "Bad Actors"
The commands listed in this section are used to create/display/delete bad actors from Ribbon Protect via REST API. After the bad actors are created, they can be viewed or displayed via REST API (alternatively, bad actors are viewed through the WebUI; see Display Bad Actors via SBC Edge WebUI). Configure REST API as follows:
- Access the REST API. The REST API is based on open standards; you can use any Web Development Programming Language or HTTP Client Library to access the API. Refer to API Requirements for more details.
- Execute the specific commands. Refer to REST API User's Guide.
Working with Protect Bad Actors via SBC Edge WebUI
The SBC Edge WebUI displays the bad actors identified by Protect. Through the WebUI, you can view the bad actors and delete as necessary.
Display Bad Actors
The SBC Edge WebUI displays the bad actors identified by Protect.
View bad actors as follows:
- Access the WebUI.
Click Settings > Security > Ribbon Protect Bad Actors.
Click the expand (
) next to the desired Bad Actor in which you want to view.
Remove Bad Actors
Through the WebUI, you can delete bad actors identified by Protect and delete in the SBC WebUI, as necessary.
Delete bad actors as follows:
- Access the WebUI.
Click Settings > Security > Ribbon Protect Bad Actors.
- Select the checkbox next to the entry you wish to delete.
In the left corner, click the Delete ( ) icon.