[Cialug] SIP & IPTables
Zachary Kotlarek
zach at kotlarek.com
Tue Feb 18 14:54:23 CST 2014
On Feb 18, 2014, at 12:34 PM, L. V. Lammert <lvl at omnitec.net> wrote:
> Would anyone have a set of working IPTables rules for an in-house VOIP
> server (i.e. NAT'ing to a local IP)?
>
> All of the examples I have found are only the ACCEPT/NAT, .. nobody seems
> to have examples of the FOWARD that seems to be required?
There are ip_conntrack_sip and ip_nat_sip modules that (in theory) reduces it to accepting the port 5060 init and then allowing RELATED connections, just like the ip_conntrack_ftp and ip_nat_ftp modules.
http://www.iptel.org/sipalg
But I agree with Dave — NAT + SIP will be a bad time.
Zach
More information about the Cialug
mailing list