Re: [asterisk-users] iptables for Asterisk - Any good guides out there?

Tzafrir Cohen Tue, 17 May 2011 06:06:57 -0700

On Sat, May 14, 2011 at 05:40:52PM -0700, Steve Edwards wrote:
> On Sun, 15 May 2011, Hans Witvliet wrote:
>
>> It's a bit more complicated....
>>
>> after the last rules, it is handy to put:
>> $iptables -A INPUT  -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; INC "
>> iptables -A OUTPUT  -o $EXTERNAL_DEV -j LOG --log-prefix " EXT; OUT "
>> iptables -A FORWARD -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; FWD "
>> So can can see in the syslog what you are missing ;-)
>
> Adding a couple of lines to root's crontab like:
>
> #       Min     hour    DOM     month   DOW     command
> #       ----------------------------------------------
> #       */5     *       *       *       *       /etc/init.d/iptables stop
>
> make it easy to enable an 'iptables failsafe' (by un-commenting the last  
> line) while you're fiddling about.


Alternatively:

  echo /etc/init.d/iptables stop | at now + 5 minutes

-- 
               Tzafrir Cohen
icq#16849755              jabber:tzafrir.co...@xorcom.com
+972-50-7952406           mailto:tzafrir.co...@xorcom.com
http://www.xorcom.com  iax:gu...@local.xorcom.com/tzafrir

--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
New to Asterisk? Join us for a live introductory webinar every Thurs:
               http://www.asterisk.org/hello

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users

Re: [asterisk-users] iptables for Asterisk - Any good guides out there?

Reply via email to