[asterisk-users] SIP and Firewall
Guenther Sohler
guenther.sohler at gmx.at
Fri Sep 21 14:06:36 CDT 2007
Dear Group!
I want to improve the firewall rules for SIP
and I already compiled the linux kernel with additional SIP netfilter
settings
Now I found this on the internet:
modprobe ip_conntrack_sip ip_nat_sip
Set IPtables filter rules
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -p udp --dport 5060 -j ACCEPT
Set IPtables NAT rules
iptables -A FORWARD -o eth0 -p udp --dport 5060 -j ACCEPT
iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to-source ip.add.dr.ess
----------
But I do not understand it. where is eth0 connected to in this example ?
and what would be the source ip adress ? what will happen if i amn connected to 2 sip gateways ?
--
Ist Ihr Browser Vista-kompatibel? Jetzt die neuesten
Browser-Versionen downloaden: http://www.gmx.net/de/go/browser
More information about the asterisk-users
mailing list