FreePBX Firewall and Blocked IP's



  • Before I post on FreePBX I thought I would see if any here (@JaredBusch ) has had this issue.

    Whenever you add a network, even as a Trusted Network, and the customer has a brief internet outage it seems I am always having to remove them from the firewall blocked list.

    I would think at least as a Trusted Network there would be a way to prevent the firewall from blocking an address.


  • Service Provider

    @bigbear said in FreePBX Firewall and Blocked IP's:

    Before I post on FreePBX I thought I would see if any here (@JaredBusch ) has had this issue.

    Whenever you add a network, even as a Trusted Network, and the customer has a brief internet outage it seems I am always having to remove them from the firewall blocked list.

    I would think at least as a Trusted Network there would be a way to prevent the firewall from blocking an address.

    Once correctly added as trusted, local, or other, I have never had a user blocked.

    I have had issues with a user getting black listed when I do not have them in there.



  • Seems like it happens weekly for a couple installations at least. Even when listing IP as Trusted (bypass firewall)

    I may trying re-configuring firewalls on those then.



  • Do you guys mark known good networks as trusted or local networks? For example, the main office or remote workers with known IPs? Or do you just let the responsive firewall handle it all?


  • Service Provider

    @fuznutz04 said in FreePBX Firewall and Blocked IP's:

    Do you guys mark known good networks as trusted or local networks? For example, the main office or remote workers with known IPs? Or do you just let the responsive firewall handle it all?

    Mostly I use trusted for offices and local for sip trunk providers and other for roaming users that have ddns.



  • Just this morning I awoke to alerts where a user was reporting NO SERVICE on their phones.

    Their networks are marked as TRUSTED now (a last ditch effort) and those IP addresses are explicitly listed in BLOCKED status.

    I do know these customers are getting internet from Time Warner and seem to be having intermittent internet issues. But still, "bypass firewall entirely" isn't whats happening.

    Last week I also made sure all of the latest updates were installed. There were a number of updates to the firewall interface I recall over a 3 day period when I started this trial. It seems to have stayed the same for a couple months now.



  • @bigbear said in FreePBX Firewall and Blocked IP's:

    those IP addresses are explicitly listed in BLOCKED status.

    Well, that would be an issue, wouldn't it?



  • Yeah it definitely seems like an issue. Since the only interface on the FreePBX is marked EXTERNAL (since its hosted) I wander if that is not a situation FreePBX engineers accounted for.

    I seem to remember early on @JaredBusch mentioning a customer of his was blocked when their internet cut in and out and he had to remove them. I saw that a couple months ago in his post.


Log in to reply
 

Looks like your connection to MangoLassi was lost, please wait while we try to reconnect.