Here’s my word to friendly scanners out there:
Why are you even spoofing the SIP User Agent Cisco-SIPGateway/IOS-12.x anyways? Because doing that will eventually get that UA added to a hot-list.
Of course, I can always do a fail2ban with FreeSWITCH, but seriously?