Hi everyone,<div><br></div><div>I want to issue the command:</div><div><br></div><div>iptables -F</div><div><br></div><div>and then rebuild everything from the beginning with a very limited scope and then without locking myself block all other traffic. Can you suggest what I should put in the shell that would get me this:</div>
<div><br></div><div>Allow traffic from subnet <a href="http://172.16.0.0/24">172.16.0.0/24</a> (my VPN tunnels) - All traffic including those of Asterisk and HTTP - I trust this network</div><div>Allow traffic from subnet <a href="http://192.168.1.0/24">192.168.1.0/24</a> (other side of VPN network) - All traffic including those of Asterisk and HTTP - I trust this network</div>
<div>Allow traffic from single IP of DID provider - 5060 TCP/UDP and 10000-10200 UDP</div><div>Allow VPN access on port 1194 UDP --- I have that figured out to be (<b>iptables -A INPUT -p udp -m udp --dport 1194 -j ACCEPT</b>) works for this.</div>
<div><br></div><div><b>BLOCK all other traffic <----- Important most of all</b></div><div><br></div><div>Please note that from the subnets I want to allow every single port possible and all traffic. I specially have problems with getting a whole subnet be able to access everything.</div>
<div><br></div><div>Thanks</div>