I’m moving from Asterisk 13 and FreePBX 13 to Asterisk 18 and FreePBX 16. Previously I had just fail2ban. I note that now there is a FireWall module.
Are there any issues / special precautions to implementing both?
Note: With the new install I will be looking to set up trunks to a SIP provider (currently using an ATA) so obviously more exposure. Also to call in from abroad via VPN and then dial out.
behavior depends on the order of which they are called, if F2B is called first then Presumably any other firewall will be ‘Appended’ to any chains in INPUT, and vice versa although you can set F2B to insert it’s chains at any arbitrary position that already exists, by default it is
chain = local
but you can customise, from jail.conf itself
Specify chain where jumps would need to be added in iptables-* actions
When you say “Responsive firewall” are you referring to the FireWall module? If so, does this imply that one should only customise using the Firewall menus in FreePBX and leave the fail2ban config file alone?