permit only certain ip

tomcattyy

Joined
Mar 2, 2010
Messages
11
Likes
0
Points
0
#1
Hello there,

I have setup the alwaysauthreject=yes to /etc/asterisk/sip_general_additional.conf
and I want to set up rules to allow only selected ip to make sip registration.
I try to add
deny=0.0.0.0/0.0.0.0
permit=66.19.xx.xx/255.255.255.255
to the sip_general_additional.conf, but it did not block the registration.
under the sip.additional
I tried
[3002]
host=66.19.xx.xx/255.255.255.255

also not do the trick to prevent [3002] to register from another ip?
Please advice what am I missing here? appreciate your help.
 

dicko

Joined
Oct 24, 2008
Messages
4,099
Likes
0
Points
0
#2
I think that those rules belong for security reasons on you firewall.

allow only incoming Paetec et al. and your VSP's on udp/5060.
 

tomcattyy

Joined
Mar 2, 2010
Messages
11
Likes
0
Points
0
#3
Thanks, ture. Stop traffic at firewall is much better than stop at elastix.
 

fmvillares

Joined
Sep 8, 2007
Messages
1,785
Likes
0
Points
0
#4
yeap but deny and permit lines also are a good way to block acceses
 

Members online

No members online now.

Latest posts

Forum statistics

Threads
30,902
Messages
130,886
Members
17,563
Latest member
dineshr
Top