[Spce-user] Possible Bug? - NGCP Firewall in mr6.5.3
Richard Fuchs
rfuchs at sipwise.com
Tue Apr 2 11:18:48 EDT 2019
On 02/04/2019 11.04, Hohl Matthias wrote:
>
> Hello,
>
> this i have to add in the config.yml file unter security > firewall >
> rules4 right?
>
> Funny thing… also if I have nothing there inside for my eth1 I can
> place calls and receive calls over this eth1… and also ping it etc…
> like there is everything accepted???
>
Ping is always allowed due to:
//
/ 6 264 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 8/
/0 0 ACCEPT icmp -- * * 0.0.0.0/0
0.0.0.0/0 icmptype 0/
SIP should not be allowed unless you happened to be using something that
fell under:
//
/2078 293K ACCEPT all -- * * 0.0.0.0/0
0.0.0.0/0 state RELATED,ESTABLISHED/
or was accepted by one of the other chains that you didn't post.
Cheers
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sipwise.com/pipermail/spce-user_lists.sipwise.com/attachments/20190402/0c7df701/attachment-0001.html>
More information about the Spce-user
mailing list