Host security

Unanswered Question
Dec 30th, 2008
User Badges:

Hi All,


I use 2611XM as a router for my voice platform. I want to restrict web browsing access on the client. So i made an access list and placed it oubound on wan interface. After this my phones are not able to register with the IP PBX server. I use Asterisk Server as IP PBX.



permit udp 192.168.13.0 0.0.0.255 any eq domain

permit udp 192.168.13.0 0.0.0.255 any range 16384 32767

permit udp 192.168.13.0 0.0.0.255 any eq 4569

permit udp 192.168.13.0 0.0.0.255 any eq 5036

permit udp 192.168.13.0 0.0.0.255 any eq 5060

permit icmp 192.168.13.0 0.0.0.255 any

permit udp 192.168.13.0 0.0.0.255 any eq ntp


Any help would be greatly appreciated.


Thanks

OJ



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
Edison Ortiz Tue, 12/30/2008 - 16:53
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

Kind of hard to tell what protocols your phones are using but you can add a deny ip any any log at the end of the ACL and boot up a phone and see what protocols are being used by looking at the log.


HTH,


__


Edison.

bansal.ojasvi Thu, 01/01/2009 - 09:10
User Badges:

Thanks Edison,


I will try using deny ip any any log. I use SIP as the VOIP protocol.


OJ

Actions

This Discussion