Koozali.org: home of the SME Server

Obsolete Releases => SME Server 9.x => Topic started by: rmeza_sw on May 24, 2017, 10:30:57 PM

Title: firewall sip
Post by: rmeza_sw on May 24, 2017, 10:30:57 PM

Hi,

I need open a range of port 5000-6000 into our server SME 9.0 but i can find the way to do it. Can you please help me?
Also I want allow all traffic from one public ip.

Thanks

Title: Re: firewall sip
Post by: Jean-Philippe Pialasse on May 24, 2017, 10:48:30 PM

GO to the server manager
choose port-forwarding
add a new rule


file the fields

Code: [Select]

Protocol : UDP (I guess)
Source Port(s) :5000-6000
Destination Host IP Address :your server ip on the lan (or localhost if you want to open for SME)
Destination Port(s) :5000-6000
Rule Comment :SIP rule
Allow Hosts :IP of the host you allow


Title: Re: firewall sip
Post by: ReetP on May 26, 2017, 01:30:54 AM

I have a service entry like this on my voip box.

The UDPPort or UDPPorts entry will get generated into masq firewall rules

freepbx=service
    AllowHosts=some.ip.adresses
    UDPPorts=5060,4569,10000:20000
    Someotherkeys=otherstuff
    access=public
    status=enabled

Eg something like this should do it.

config set voipservice service UDPPorts 50506,4569,10000:20000 AllowHosts 1.2.3.4 access public status enabled

signal-event remoreaccess-update

Search the wiki page for UDPPort for more info.

(Not bad doing this on my mobile phone on holiday using a vpn to the voip box to check the config !!!!)

Title: Re: firewall sip
Post by: Jean-Philippe Pialasse on May 26, 2017, 02:40:04 AM

reetp version the way you should use if the service is on your SME. The one i suggested is more for refirecting to a box on the lan.

If it is on sme i suggest using freepbx contrib these ports are configured directly.