Re: [asterisk-users] iptables for Asterisk - Any good guides out there?

Steve Edwards Sat, 14 May 2011 17:41:05 -0700

On Sun, 15 May 2011, Hans Witvliet wrote:

It's a bit more complicated....


after the last rules, it is handy to put:
$iptables -A INPUT  -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; INC "
iptables -A OUTPUT  -o $EXTERNAL_DEV -j LOG --log-prefix " EXT; OUT "
iptables -A FORWARD -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; FWD "
So can can see in the syslog what you are missing ;-)


Adding a couple of lines to root's crontab like:

#       Min     hour    DOM     month   DOW     command
#       ----------------------------------------------
#       */5     *       *       *       *       /etc/init.d/iptables stop

make it easy to enable an 'iptables failsafe' (by un-commenting the lastline) while you're fiddling about.


--
Thanks in advance,
-------------------------------------------------------------------------
Steve Edwards       [email protected]      Voice: +1-760-468-3867 PST
Newline                                              Fax: +1-760-731-3000

--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
New to Asterisk? Join us for a live introductory webinar every Thurs:
              http://www.asterisk.org/hello

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
  http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] iptables for Asterisk - Any good guides out there?

Reply via email to