Skip to main content
Flowroute

iptables Tips

A fairly simple Iptables script for allowing Flowroute, SSH, and HTTPS access to your system can be implemented as follows:

  1. Run the following to allow SIP signaling from Flowroute's Primary and Secondary proxies: 

    iptables -A INPUT -s sip-la1.flowroute.com -p UDP --dport 5060 -j ACCEPT
    iptables -A INPUT -s sip-lv1.flowroute.com -p UDP --dport 5060 -j ACCEPT
  2. Add the following to allow RTP Media (audio) into your system: 

    iptables -A INPUT -p UDP --dport 10000:20000 -j ACCEPT

    NOTE: Verify the RTP range your system needs, as this might vary from system to system.  

  3. Add the following to allow SSH access into your system, where xxx.xxx.xxx.xxx is a trusted source IP or hostname from which you are connecting. 

    iptables -A INPUT -s xxx.xxx.xxx.xxx -p TCP --dport 22 -j ACCEPT
  4. Add the following to allow HTTPS access to your system, where xxx.xxx.xxx.xxx is a trusted source IP or hostname from which you are connecting. 

    IMPORTANT: Allow this only if you need it.

    iptables -A INPUT -s xxx.xxx.xxx.xxx -p TCP --dport 443 -j ACCEPT
  5. Once you input the rules, run the following: 

    iptables-save
  6. After saving the your Iptables configuration, run the following command to view the configuration:

    iptables -L
  7. If everything is correct, you might need to restart Iptables or your network depending on your Linux distribution. Once restarted, run the following to verify whether or not your Iptables are intact: 

    iptables -L
  • Was this article helpful?