Daryl Sanders wrote: > Manny, > > I'm not sure what all of these firewall distros are including these > days, but for the sake of overhead, You may wish to consider tools > like plain ol' iptables with fwsnort or some other kernel level > firewalling/filtering. Of course this would mean no pretty web > interface. As I'm sure you are aware VoIP on small boxes can run into > all sorts of problems when you start adding a bunch of filtering. > > I haven't found that to be a problem, I run shorewall on my pbx machines, I allow IAX externally, SIP and RTP internally, ftp and http for monitoring and phone configs, I have zero problems with this configuration. Putting the PBX on the internet feed avoids a lot of issues with NAT. If I were doing multiple servers and a huge corporate network I would not do this but for a 10-100 user one location company, this is perfectly workable.
-- Chris Mason NetConcepts (264) 497-5670 Fax: (264) 497-8463 Int: (305) 704-7249 Fax: (815)301-9759 UK 44.207.183.0271 Cell: 264-235-5670 Yahoo IM: [EMAIL PROTECTED] -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. _______________________________________________ Astlinux-users mailing list [email protected] http://lists.kriscompanies.com/mailman/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED]
