hurray! I can see that being able to add a custom rule or two would be nice. i think it's great either way though!
On Wed, Mar 28, 2012 at 8:39 AM, Douglas Hubler <dhub...@ezuce.com> wrote: > In 4.6 we're using iptables to restrict access to services. This is > different than 4.4 where we had either clunky, home grown > authorization schemes (shared secret based) or no protection at all > (not security risk, just DoS or Buffer overflow vulnerabilities) > > Goals: > - Default rules out of box will fit most use cases > - Provide some level of customization for the most common tasks > - If configuration doesn't meet demands allow user to take over > firewall config manually for each server > - Plugins can contribute to the default rules > - If firewall is handled by separate system allow user to disable > firewall config completely > > Non Goals: > - Meet all the demands of all users > > I put together what i think is a mock-up that meets this demand > http://track.sipfoundry.org/secure/attachment/27728/Firewall+Take+2.png > > As part of this jira ticket - Specifically mock labled : Firewall Take 2 > http://track.sipfoundry.org/browse/XX-5197 > > Comments? > _______________________________________________ > sipx-users mailing list > sipx-users@list.sipfoundry.org > List Archive: http://list.sipfoundry.org/archive/sipx-users/ > -- ~~~~~~~~~~~~~~~~~~ Tony Graziano, Manager Telephone: 434.984.8430 sip: tgrazi...@voice.myitdepartment.net Fax: 434.465.6833 ~~~~~~~~~~~~~~~~~~ Linked-In Profile: http://www.linkedin.com/pub/tony-graziano/14/4a6/7a4 Ask about our Internet Fax services! ~~~~~~~~~~~~~~~~~~ -- LAN/Telephony/Security and Control Systems Helpdesk: Telephone: 434.984.8426 sip: helpd...@voice.myitdepartment.net Helpdesk Customers: http://myhelp.myitdepartment.net Blog: http://blog.myitdepartment.net
_______________________________________________ sipx-users mailing list sipx-users@list.sipfoundry.org List Archive: http://list.sipfoundry.org/archive/sipx-users/
