[Freeswitch-users] Port question again
Santiago Soares
santiagosoares at gmail.com
Wed Jan 20 06:18:25 PST 2010
You can use this rule to allow media from any IP:
-A INPUT -m multiport -p udp --dport 16384:32768 -j ACCEPT
And this one to allow signaling:
-A INPUT -s aaa.bbb.ccc.ddd -p udp --dport 5080 -j ACCEPT
Where aaa.bbb.ccc.ddd is the IP address of your VoIP provider.
Santiago Soares
On Wed, Jan 20, 2010 at 9:23 AM, Max Bridgewater
<max.bridgewater at gmail.com> wrote:
> Hey Guys,
>
> Thought the port question was asked a number of times, I couldn't find an
> answer to this. So please bear with me. I have a Freeswitch box that is on
> the Internet without any sort of NAT. I want to block as much ports as
> possible on this box while still allowing Freeswitch to 1) receive calls
> from Voip providers and 2) send calls to other VoIP providers.
>
> What port can I block and what ports do I need to let open?
>
> I know 5080 needs to be open. But can I restrict the RTP ports to, say, only
> 20000?
>
> Thanks so much.
> Max.
>
> _______________________________________________
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>
More information about the FreeSWITCH-users
mailing list