Virtual Architects Support Wiki

User Tools

Site Tools

You are here: start » voice » pbx » freepbx » freepbx_firewall
Trace: freepbx_find_me_follow_me virtualmin_spam_troubleshoot zimbra_password_policy
voice:pbx:freepbx:freepbx_firewall

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
voice:pbx:freepbx:freepbx_firewall [2020/10/07 09:51]
gcooper 		voice:pbx:freepbx:freepbx_firewall [2024/02/06 09:27] (current)
gcooper
Line 1: Line 1:
 ====== FreePBX Security ====== ====== FreePBX Security ======
  
 +**Background**: https://www.freepbx.org/a-secure-freepbx-is-a-happy-freepbx/
  
-**Responsive Firewall Video**: https://youtu.be/CD_k5PrY7Xc+**Pro Tips Video**: https://www.youtube.com/watch?v=CD_k5PrY7Xc
  
-**Responsive Firewall HowTo**: http://www.freepbxhosting.com/blog/how-to-freepbx-13-firewall-setup/+**Setup Guide**: https://www.freepbxhosting.com/comprehensive-freepbx-firewall-setup-guide/
  
-**Overview**: http://wiki.freepbx.org/display/FPG/Firewall+===== Safe Mode =====
  
-**Getting Started**: http://wiki.freepbx.org/display/FPG/Firewall+Getting+Started+Guide+<note important>Safe Mode is enabled if you **reboot the PBX twice in five minutes** time.
  
-**Permissions**: http://wiki.freepbx.org/display/FPG/Firewall+Permissions+The **firewall rules activation will be delayed by five minutes** to allow an admin to fix the access problem.</note>
  
-**Responsive Firewall**: http://wiki.freepbx.org/display/FPG/Responsive+Firewall+===== Firewall =====
  
-===== Safe Mode =====+**Basic Firewall Configuration - Watch First**: https://youtu.be/CD_k5PrY7Xc 
 + 
 +Run the **Firewall Wizard**: 
 + 
 +**FreePBX -> Connectivity -> Firewall -> Settings (tab) -> Re-Run Wizard** 
 + 
 +  * Whitelist Host? -> **Yes** 
 +  * Whitelist Network? -> **No** 
 +  * Enable Responsive Firewall? -> **Yes** 
 +  * Automatically configure Asterisk IP Settings? -> **Yes** 
 + 
 +**FreePBX -> Connectivity -> Firewall -> Networks (tab)** 
 + 
 +:!: This tab overrides the default permission for an interface. 
 + 
 +  * **Trusted** -> Only add trusted **admin** IP, network or FQDN 
 +  * **Local** -> Add IP, network or FQDN for **normal voice traffic** (where phones are) 
 + 
 +**FreePBX -> Connectivity -> Firewall -> Interfaces (tab)** 
 + 
 +:!: This tab sets the **Default Traffic Zones**. 
 + 
 +  * You must set at least one interface as **Internet** 
 +  * Single-interface systems will be set as **Internet** (''eth0''
 +  * ''Trusted'' means **no filtering** at all 
 + 
 +**FreePBX -> Connectivity -> Firewall -> Responsive Firewall (tab)** 
 + 
 +  * Enable for any protocol in use 
 +  * This will open ports for limited access 
 +  * Too many failures will result in that IP being blocked 
 + 
 +**FreePBX -> Connectivity -> Firewall -> Intrusion Detection (tab)**
  
-<note important>With Safe Mode enabled, if you **reboot the PBX twice in five minutes** time, the **firewall rules activation will be delayed by five minutes** to allow an admin to fix his access problem.</note>+  Shows blocked IPs 
 +  You can whitelist IPs or networks
  
 ===== Older Suggested Firewall Example ===== ===== Older Suggested Firewall Example =====
voice/pbx/freepbx/freepbx_firewall.1602085897.txt.gz · Last modified: 2020/10/07 09:51 by gcooper

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki