I have read the code of the secfilter, but I was not able to see any specific code to silently discard the SIP request.
I can see in the documentation about "secf_check_sqli_all", that the SIP message is supposed to be "dropped". I can see "w_check_sqli_all" returns 0 on detection and w_check_ua returns -2 upon detection.
Are the message discarded because a negative value was returned?
Would it be doable, using the secfilter, to still reply 200 Ok?
Regards
Aymeric
Antisip -