For a year now I’ve been running FreePBX on my LAN successfully without opening up the system to the wider internet. It’s been working well. There’s an IAX trunk that goes out over ZeroTier but because that’s private/local as well, there’s been no issues.
Now I’m wanting to use Groundwire on my iPhone and for that to work I need to open up my instance to the wider net.
Is there any way I can continue to enjoy the benefits and security of Fail2Ban and the peace from hacking attempts I’ve enjoyed up to now whilst allowing access to
a) The Groundwire servers; any of
220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168
b) My iPhone’s 3G IP, currently 2XX.XX5.22X.X (obfuscated). Presumably this will occasionally change. Don’t know how often. But the range might stay fairly consistent.
c) My home WAN IP - so I can use the app at home
d) The work WAN IP - so I can use the app at work
Anyone know how best to go about this? Really like Fail2Ban…