I did have a question on this but it didn't end up getting answered :-(
I'm attempting to secure an asterisk VoIP box on our LAN. I would like to have it sat on a DMZ, and as a result it needs to be well-secured using iptables.
I have changed the SSH port to 999 (For this question's sake, anyway... ;-)
- SIP/ 5060 needs to be open, but ONLY to a specific IP address of my SIP host (E.g 126.96.36.199)
- HTTP needs to be open to anyone (On the usual port 80)
I did attempt this before but unfortunately ended up locking myself out of the machine every time I enabled iptables, and got angry so abandoned the idea. Now the box is due to go live soon and I'd appreciate some assistance!!
Thanks in advance.