[asterisk-users] iptables for Asterisk - Any good guides out there?
Tzafrir Cohen
tzafrir.cohen at xorcom.com
Tue May 17 08:06:47 CDT 2011
On Sat, May 14, 2011 at 05:40:52PM -0700, Steve Edwards wrote:
> On Sun, 15 May 2011, Hans Witvliet wrote:
>
>> It's a bit more complicated....
>>
>> after the last rules, it is handy to put:
>> $iptables -A INPUT -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; INC "
>> iptables -A OUTPUT -o $EXTERNAL_DEV -j LOG --log-prefix " EXT; OUT "
>> iptables -A FORWARD -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; FWD "
>> So can can see in the syslog what you are missing ;-)
>
> Adding a couple of lines to root's crontab like:
>
> # Min hour DOM month DOW command
> # ----------------------------------------------
> # */5 * * * * /etc/init.d/iptables stop
>
> make it easy to enable an 'iptables failsafe' (by un-commenting the last
> line) while you're fiddling about.
Alternatively:
echo /etc/init.d/iptables stop | at now + 5 minutes
--
Tzafrir Cohen
icq#16849755 jabber:tzafrir.cohen at xorcom.com
+972-50-7952406 mailto:tzafrir.cohen at xorcom.com
http://www.xorcom.com iax:guest at local.xorcom.com/tzafrir
More information about the asterisk-users
mailing list