Firewall Rules

We strongly recommend you to enable and configure firewall on the PBX to prevent the attack fraud or calls loss.

Enable Firewall on the PBX

Go to Settings > System > Security > Firewall Rule, check the option Enable Firewall.

If firewall is enabled, the page will show "Firewall is running", and the firewall rules will work to protect your PBX.

Firewall Rules

Firewall rules are pre-configured rules to control and filter traffic that are sent to the PBX. You can create firewall rules to filter specific source IP address or domain name, ports, MAC address.

Go to Settings > System > Security > Firewall Rules to configure the firewall rules.

  • Name: Set a name to identify the firewall rule.
  • Description: Optional. Description for this firewall rule.
  • Action: Choose the action for the firewall rule.
    • Accept
    • Ignore
    • Reject
  • Protocol: Choose the protocol that is applied to the rule.
    • UDP
    • TCP
    • BOTH: Both TCP and UDP
  • MAC Address: Optional. The MAC address that is applied to the rule.

    The format of Mac address is XX:XX:XX:XX:XX:XX.

  • Type: Choose the network type of the source traffic.
  • Source IP Address/Subnet Mask: The IP address and subnet of the source traffic.
  • Domain Name: The domain name of the source traffic.
  • Port: The port of the source traffic.

Additional Firewall Settings

The PBX provides additional firewall settings to enhance the system security.

  • Disable Ping: The PBX will disable Ping response (ICMP echo).
  • Drop All: The PBX will drop all the packets and connections from other hosts except the accepted/trusted IP address/domain that is defined in the firewall rules.
    Note: To avoid that you cannot access the PBX:
    • Add at least one firewall rule to accept web access or SSH access.
    • Create a backup on the PBX before you enable Drop All.