Guys
wanted to ask a question as how do we (or can we) define whitelist of IPs for a particular tenant so that their (that specifig Tenant) phones can only be registered if the "register" requested was initiated from their IPs only.
as we are hosting multiple tenants on the same box, but this is a requirement for one customer/tenant only.
Any help would be much appreciated.
Rgds
Hash
Eric's definitely right. I
Eric's definitely right. I would think you are way better off looking at a firewall based solution in combination with iptables.
Something like : http://www.cyberciti.biz/faq/block-entier-country-using-iptables/ might get you started.
You also could check out http://humbuglabs.org/ - they've done a bit of work in this area.
Thanks alot Erik, have tested
Thanks alot Erik, have tested it in a test environment and it worked.
you're a star :)
Kind Regards
Hash
Erik Sorry Forgot to ask,
Erik
Sorry Forgot to ask, whats the impact on scalability exactly so we can make a decision
Rgds
Hash
this is not meant to be used everywhere, or even on lots of tenants, as it will definitely impact your scalability.. but if you look at the voip-info wiki for sip.conf you'll see there are allow/deny ACL for each sip channel which you can define in the 'other options' section of the sip settings of the users extension.