Hello, I’ve recently begun updating FreePBX systems from 13 to 15 (distro) and on our own custom rolled systems, we use firewalld so it’s trivial to only allow traffic from a specific source, i.e. IP(s). However, in SNG7, I can’t seem to find a way to disable all external access excepted the whitelisted / “trusted networks”. I’ve tried disabling the adaptive firewall, but I’m still seeing a decent amount of traffic coming through (on the FPBX dashboard), about 10kbps avg.
So, what’s the standard way for blocking all traffic except for whitelist IP source? Is there a way to use firewalld (i.e. before traffic even reaches FPBX’s firewall) without iptables/freepbx internal firewall conflict?
I did search the forums and documentation, but I found a lot of conflicting answers and a few possible solutions (like disabling 'responsive firewall") that seemed to not limit all traffic.