Sign up
Vonage Forum Menu
The Vonage Forums
Vonage VoIP Forum
Vonage Forum Archive
Vonage Canada
Vonage UK
Vonage Stock
Fax, Tivo & Alarms
Hard Wiring
Number Transfer
V-Phone & SoftPhone
VoIP Feature Request
Vonage TV Ads
International Rates
Forum Suggestions
Report a Bug
The Cafeteria
Forums Archive
All Vonage News
Vonage In The News
Press Releases
Forum Digest
News Archives
Vonage Sign Up Info
Vonage Features
Vonage Area Codes
Vonage FAQ
Vonage Reviews
VoIP Speed Test
Vonage Toolbar
Network Setup
Wiring & Installation
Vonage 911
Business Account
VoIP Acronyms
VoIP Advertising
Wi-Fi Phone
Contact Support
Member Registration
Member Login
Member List
Your Account
Private Message
Forum Faqs
Recommend Us
Website Feedback
Forum Syndication
Forum Newsletter
Search Using Google
Search Forums
Search News
Forum Speed Dial
Vonage Forum
Forum Community
The Vonage Forums
Vonage VoIP Forum
Forum Archive
Vonage Canada
Vonage UK
Vonage Stock
Fax, Tivo & Alarms
Hard Wiring
Number Transfer
V-Phone & SoftPhone
Feature Request
Vonage On TV
International Rates
Forum Suggestions
Report A Bug
The Cafeteria
All Archives
Vonage News
All Vonage News
In The News
Press Releases
Forum Digest
News Archive
Vonage Information
Sign Up Info
Vonage Features
Area Codes
Vonage FAQ
Vonage Reviews
VoIP Speed Test
Vonage Toolbar
Network Setup
Wiring & Installation
Vonage 911
Business Account
VoIP Acronyms
VoIP Advertising
Wi-Fi Phone
Contact Support
Member Services
Registration
Member Login
Member List
Your Account
Private Messages
Forum Faq's
Recommend Us
Website Feedback
RSS Syndication
Forum Newsletter
Search
Search Using Google
Search Forums
Search News
Vonage Forums
iptables for Vonage
Vonage® VoIP Forum - Vonage News, Reviews And Discussion
»
The Cafeteria - Any Non Vonage Topic
Author
Message
opedroso
New Forum Member
Joined: Nov 03, 2004
Posts: 3
Location: Brazil
Posted:
Wed Nov 03, 2004 8:29 am
Post subject: iptables for Vonage
I am new to iptables and I want to put my
Vonage
box behind my Linux Firewall.
I am wondering if anybody has some iptables script that already does this that I could learn from.
Thanks so much
Guest
Posted:
Wed Nov 03, 2004 10:01 pm
Post subject:
#Location of iptables binary
IPTABLES="/sbin/iptables"
#External (public) interface
EXTIF="eth0"
#IP address of
Vonage
device
VONAGE="192.168.0.2"
$IPTABLES -t nat -A PREROUTING -i $EXTIF -p udp --dport 5060:5061 -j DNAT --to $VONAGE
$IPTABLES -t nat -A PREROUTING -i $EXTIF -p udp --dport 53:53 -j DNAT --to $VONAGE
$IPTABLES -t nat -A PREROUTING -i $EXTIF -p udp --dport 69:69 -j DNAT --to $VONAGE
$IPTABLES -t nat -A PREROUTING -i $EXTIF -p udp --dport 10000:10000 -j DNAT --to $VONAGE
Guest
Posted:
Wed Nov 03, 2004 10:03 pm
Post subject:
OOPS! Forgot this line (I'm pulling parts out of a very long script - you wouldn't want all of it.)
-DNAT doesn't do much good if you aren't natting - I use masquerade:
$IPTABLES -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE
opedroso
New Forum Member
Joined: Nov 03, 2004
Posts: 3
Location: Brazil
Posted:
Thu Nov 04, 2004 6:37 am
Post subject:
Are you sure the last line is correct? According to the
Vonage
manual, it says the port range to allow through to be 10000:20000, but your iptables has a range 10000:10000. Does the phone actually work like that?
Learned several things though, on how to through iptables to a filter to a specific address.
Thanks!
Guest
Posted:
Fri Nov 05, 2004 9:02 pm
Post subject:
You are right - I have a typo...
It works fine like it is now though...
Visitor
Guest
Posted:
Fri Dec 17, 2004 2:57 pm
Post subject: Iptables for Vonage
If the example given works for your system, I urge you to do a pen test on your system. You may not have the security you think you do.
Jo
Full Forum Member
Joined: Jan 31, 2005
Posts: 43
Location: Seattle Wa
Posted:
Sun Feb 27, 2005 2:12 pm
Post subject:
With
Vonage
the TCP connection is opened by the telephone adapter when it boots and is kept continuously open by some keep-alive mechanism. If you watch the adapter lights you see constant activity.
Since the connection is opened from the LAN side of the router then entries in routing tables may be unnecessary. This is what I discovered with my Linksys router, which uses Linux.
netcrasher
Guest
Posted:
Sat May 07, 2005 4:38 am
Post subject: IPCOP.ORG
Just get ipcop, it will solve all of your problems.. Nice web GUI too..
Display posts from previous:
All Posts
1 Day
7 Days
2 Weeks
1 Month
3 Months
6 Months
1 Year
Oldest First
Newest First
Vonage® VoIP Forum - Vonage News, Reviews And Discussion
»
The Cafeteria - Any Non Vonage Topic
Jump to:
Select a forum
Vonage® VoIP Forums
----------------
Vonage
Vonage Forum Archive
Vonage Canada
Vonage UK
Vonage Stock
Fax - Tivo - Alarms
Hard Wiring - Installation
LNP – Local Number Portability
Vonage V-Phone & SoftPhone
VoIP Feature Wish List
Vonage TV Commercials
International Rates
Forum Suggestions - Open Topics
----------------
The Cafeteria - Any Non Vonage Topic
Forum Suggestions - Comments
Report A Forum Bug
You
cannot
post new topics in this forum
You
cannot
reply to topics in this forum
You
cannot
edit your posts in this forum
You
cannot
delete your posts in this forum
You
cannot
vote in polls in this forum
All times are GMT - 5 Hours