[Firewall] dpkg configuration question

Russell Treleaven rtreleaven at bunnykick.ca
Mon Feb 24 19:44:21 CET 2014


Just tried it.
Seems to give no access to external network at all.
Which is still much better than giving full access to the private network :)

Russell Treleaven,


On Mon, Feb 24, 2014 at 1:22 PM, Russell Treleaven
<rtreleaven at bunnykick.ca> wrote:
> Hi,
>
> I am running the arno-iptables- 2.0.1.d-1 as provided by Ubuntu 13.04.
>
> I configure it thusly "dpkg-reconfigure arno-iptables-firewall"
>
> The last question is about internal networks that have access to
> external networks.
>
> I am testing  mobile voip  so I wish to set it to 0.0.0.0/0.
>
> Here is the scenario...
>
> smartphone with sip client places call to ip pbx(same box as
> arno-ibtables) over 3g network.
> both endpoints have public ip addresses
> smartphone with sip client comes in range of wifi
> smartphone get private ip from my dnsmasq deamon
> default route gets updated.
> media stream from smartphone with public source address goes over
> private wifi to ip pbx.
> media stream from pbx to smartphone goes over the internet as usual.
>
> This is what I want to do just a little worried I might hit a corner
> case using allowing 0.0.0.0/0 access to external networks.
> I doubt this is a popular use case.... yet.
>
> Please Advise,
>
> Russell Treleaven


More information about the Firewall mailing list