On Tue, 2009-09-22 at 18:51 -0400, Max DiOrio wrote: > Still not working for me. In fact, this time it was worse. Everything stays > registered, but this time I get no audio in either direction, and although it > was working after I enabled the firewall, web access stopped working after a > few minutes. I can see the calls come in, but the RTP stream just isn't > being set up right. I also tried putting in the dont_load sip helper as per > the shorewall website, no help. > > Here's my config, maybe someone can spot something that's wrong. > > zones: > fw firewall > net ipv4 > loc ipv4 > > interfaces: > loc eth0 detect > net eth1 detect > > policies: > loc all ACCEPT > fw all ACCEPT > net all DROP > all all REJECT > > rules: > Ping/ACCEPT net $FW > Webmin/ACCEPT net $FW > ACCEPT net:204.11.116.47,204.11.119.47,67.242.xx.xx $FW all > ACCEPT $FW:204.11.116.47,204.11.119.47,67.242.xx.xx net all
The only time that this would make sense is if $FW and net were the same interface Maybe you meant this.. ACCEPT net:204.11.116.47,204.11.119.47,67.242.xx.xx $FW all ACCEPT $FW net:204.11.116.47,204.11.119.47,67.242.xx.xx all > ACCEPT net fw all > > > The third IP in the accept statement is my public IP at home...I didn't want > to lock myself out of the box. > > I don't see any reason why the above won't work. It should be allowing all > packets in to and out of the Firewall to the SIP Trunk provider's IPs. > > Max > ------------------------------------------------------------------------------ Come build with us! The BlackBerry® Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9-12, 2009. Register now! http://p.sf.net/sfu/devconf _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
