[Freeswitch-users] Port question again

Santiago Soares santiagosoares at gmail.com
Wed Jan 20 06:18:25 PST 2010


You can use this rule to allow media from any IP:

-A INPUT -m multiport -p udp --dport 16384:32768 -j ACCEPT

And this one to allow signaling:

-A INPUT -s aaa.bbb.ccc.ddd -p udp --dport 5080 -j ACCEPT

Where aaa.bbb.ccc.ddd is the IP address of your VoIP provider.

Santiago Soares


On Wed, Jan 20, 2010 at 9:23 AM, Max Bridgewater
<max.bridgewater at gmail.com> wrote:
> Hey Guys,
>
> Thought the port question was asked a number of times, I couldn't find an
> answer to this. So please bear with me. I have a Freeswitch box that is on
> the Internet without any sort of NAT. I want to block as much ports as
> possible on this box while still allowing Freeswitch to 1) receive calls
> from Voip providers and  2) send calls to other VoIP providers.
>
> What port can I block and what ports do I need to let open?
>
> I know 5080 needs to be open. But can I restrict the RTP ports to, say, only
> 20000?
>
> Thanks so much.
> Max.
>
> _______________________________________________
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>




More information about the FreeSWITCH-users mailing list