Restrict Specific Countries or Regions from Accessing Yeastar S-Series VoIP PBX

This topic describes how to restrict specific countries or regions from accessing Yeastar S-Series VoIP PBX.


By default, all the countries and regions are allowed to access your phone system. Sometimes hackers may remotely access your phone system to make international and long distance calls, monitor conversations, or do other operations that may cause a security threat to your phone system. In this case, you can restrict IP addresses originate from which country or region can access Yeastar S-Series VoIP PBX.


Make sure firewall is enabled on the PBX, or the feature will NOT take effect.


  1. Go to Settings > System > Security > Allowed Country IPs.
  2. In the Country/Region IP Access Management section, select the checkboxes of the desired countries or regions, click Allow.
  3. In the Operation section, select the checkbox of Enable Allowed Country/Region IP Access Protection.
  4. In the pop-up window, check the allowed countries or regions, click Yes.

    Only the device whose IP address originates from the specified countries or regions can access the PBX.

  5. For the disallowed countries or regions, if you want to allow specific IP address to access the PBX, you can create firewall rules to accept the IP address. For more information, see Examples of Firewall Rules.