I'm just finishing the test of a solution where the Asterisk box acts as a firewall between the outside world and the inside world, but uses only a single network card. It uses the VLAN capabilities built into Redhat 9.0. As a consequence, the switch to which it is connected needs to understand VLAN aka 802.1q as well. I've found an IPTables configuration that locks the box down quite a bit. Now I'm working on installing Asterisk so it can listen on the various sub-interfaces. I think I've successfully resolved the various internal routing issues. I should know the results of this experience later today.
I've got some vlan configs on my site: http://www.oneunified.net/support/ under Linux support. I hope to post the iptables config (for NAT, forwarding, and firewall) later on today. Regards, Ray Burkholder > > The problem should be easy enough to solve for someone who knows the > internal guts. As a matter of fact, this is very important to resolve. > Asterisk behind firewall is trouble and that is known already. So I > decided to use the same linux box as firewall, meaning I need atleast > two NICs. I wonder how others are solving this issue. I refuse to > believe that no one faced similar problems cause there is no other way > for a beginner to plant an Asterisk box but have two NICs or > go through > the NAT troubles. Moreover, there are news posts all over about SIP > phones meaning others are connecting more than one NICs. > Wonder why they > don't have similar issue. I am sure that there are more out there who > are facing similar problems so people who have solved this, > please speak > up and help us all. > > Thanks in advance. > Ricky -- Scanned for viruses and dangerous content at http://www.oneunified.net and is believed to be clean. _______________________________________________ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
