[Asterisk-Users] Fedora Core 2 firewall rules - NO NAT!
Ed Greenberg
edg at greenberg.org
Wed Dec 1 10:30:13 MST 2004
This is a common configuration. My asterisk box is also my router.
dsl -> eth1 -> linux <- eth0 <- home network
The linux box routes and firewalls.
In your case, you probably have another router and just want to multi-home
your asterisk box. Is this correct? If so, just don't turn on routing, or
you will have two routers with the same number of hops and you'll create a
mess - probably.
That said, I'd install shorewall (www.shorewall.net) on the box to ease the
complexity of configuring NetFilter, and firewall it to let in only those
ports you need. Shorwall will consider the box itself as device 'fw' and
will consider the other two interfaces as 'loc' and 'net'.
If you want my ruleset I'll share it with you. Write me offline.
</edg>
--On Wednesday, December 01, 2004 5:08 PM +0000 Mike Dent
<mcdent at gmail.com> wrote:
> Thanks for replies!
>
> It occurred to me that I'll need to have 2 network cards in this * box.
> One on the LAN and the other the external public IP one.
>
> Is there anything obvious I should watch out for with this config?
>
> thanks
> Mike
> _______________________________________________
> Asterisk-Users mailing list
> Asterisk-Users at lists.digium.com
> http://lists.digium.com/mailman/listinfo/asterisk-users
> To UNSUBSCRIBE or update options visit:
> http://lists.digium.com/mailman/listinfo/asterisk-users
More information about the asterisk-users
mailing list