I was trying to build some redundancy for a pbx, and had a few questions.
When using an IP based host, can deny/permit statements in the trunk also allow those IPs to access the peer? For example, our upstream provider has 1.1.1.34 and 1.1.1.35, and they are allowing our traffic. We currently have 2 trunks with the same config. This works as expected, and works well.
Trying to further “complicate” things in trying to make them “neater”, I was hoping to use SRV records on the host= entry so we can use a single entry. Knowing the asterisk limitations, I can generate our own srv records with equal weight, so it’s not an issue. Trying to keep it as a single trunk for efficiency’s sake, would deny=0.0.0.0 and permit=1.1.1.32/255.255.255.240 work to prevent calls coming in from possibly other switches from getting rejected as anonymous?
If the provider has a bank of 16 IPs that their calls can come from, would deny=0.0.0.0/0.0.0.0 and permit=1.1.1.32/255.255.255.240 allow me to receive those calls on the defined trunk as normal, and not have to allow anonymous calls?
I hope I explained it correctly…
Thanks,
Carlos.