{"id":7345,"date":"2025-08-23T15:08:13","date_gmt":"2025-08-23T15:08:13","guid":{"rendered":"https:\/\/wiki.xontel.com\/?post_type=manual_documentation&#038;p=7345"},"modified":"2025-09-30T17:34:07","modified_gmt":"2025-09-30T17:34:07","slug":"ip-tables-2","status":"publish","type":"manual_documentation","link":"https:\/\/wiki.xontel.com\/ar\/documentation\/telsip-cloud-pbx\/pbx-v-1-x-x\/system-2\/security\/ip-tables-2\/","title":{"rendered":"IP Tables"},"content":{"rendered":"<p>The Telsip PBX system comes preconfigured with a built-in iptables firewall to protect your IP phone system from unauthorized access, fraudulent calls, and various types of network attacks. It enables the creation of custom iptables rules to control the traffic sent to and received from PBX devices.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large image-border\"><img fetchpriority=\"high\" decoding=\"async\" width=\"1024\" height=\"355\" src=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-96-1024x355.png\" alt=\"\" class=\"wp-image-7988\" srcset=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-96-1024x355.png 1024w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-96-300x104.png 300w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-96-768x266.png 768w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-96-18x6.png 18w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-96.png 1522w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>The system includes default rules that:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Accept all internal traffic<\/li>\n\n\n\n<li>Accept XonTel-specific rules<\/li>\n\n\n\n<li>Block external traffic<\/li>\n\n\n\n<li>Block unauthorized ports<\/li>\n<\/ul>\n\n\n\n<p>To manage iptables, first enable the service by checking the <strong>Enable Service<\/strong> option. Once enabled, you can create, delete, modify, disable, or reorder firewall rules. Be sure to click the <strong>Save<\/strong> button after each change; otherwise, the modifications will not take effect in the system.<\/p>\n\n\n\n<p>Clicking <strong>Reset Rules<\/strong> will discard all changes and restore the firewall to the default XonTel rule set.<\/p>\n\n\n\n<p style=\"font-size:30px\"><strong>Add Rule<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large image-border\"><img decoding=\"async\" width=\"1024\" height=\"593\" src=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-94-1024x593.png\" alt=\"\" class=\"wp-image-7984\" srcset=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-94-1024x593.png 1024w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-94-300x174.png 300w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-94-768x445.png 768w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-94-18x10.png 18w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-94.png 1508w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><strong>Name<\/strong>: Give this rule a descriptive name to help you identify it.<\/p>\n\n\n\n<p><strong>Description<\/strong>: A brief description of this rule.<\/p>\n\n\n\n<p><strong>Order<\/strong>: Priority of rule.<\/p>\n\n\n\n<p><strong>IP Address<\/strong>: The IP address format is: IP address\/subnet mask, subnet mask needs to be<\/p>\n\n\n\n<p>Written in short format.<\/p>\n\n\n\n<p><strong>Action<\/strong>: Select the option that applies to this rule,<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Accept<\/strong>: The device will accept access to the specified address.<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>&nbsp;<strong>Deny<\/strong>: The PBX will deny the connection from the specified address and will send &nbsp;&nbsp;&nbsp;an error message to the other side informing them that the device has denied the connection.<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>&nbsp;<strong>Ignore<\/strong>: The device will ignore the connection from the specified address, drop the data directly, and do not give any feedback.<\/li>\n<\/ul>\n\n\n\n<p class=\"has-text-align-left has-vivid-red-color has-text-color has-link-color wp-elements-5ce0c4c24c9d56714878357b688cc08d\">      To improve the security of your PBX system, you can use Ignore actions to avoid malicious attacks to   detect the server information of your device.      <\/p>\n\n\n\n<p><strong>Enabled<\/strong>: Check it to enable the rule.<\/p>\n\n\n\n<p><strong>Protocol<\/strong>: Select the protocol that applies to this rule, selects UDP, TCP and BOTH (UDP and TCP).<\/p>\n\n\n\n<p><strong>Port<\/strong>: Write the ports for this rule, which can specify port groups and individual ports.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full image-border\"><img decoding=\"async\" width=\"1490\" height=\"425\" src=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-95.png\" alt=\"\" class=\"wp-image-7987\" srcset=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-95.png 1490w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-95-300x86.png 300w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-95-1024x292.png 1024w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-95-768x219.png 768w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/04\/image-95-18x5.png 18w\" sizes=\"(max-width: 1490px) 100vw, 1490px\" \/><\/figure>\n\n\n\n<p class=\"has-medium-font-size\"><strong>\ud83d\udd01 Reordering Rules<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large image-border\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"387\" src=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-77-1024x387.png\" alt=\"\" class=\"wp-image-7992\" srcset=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-77-1024x387.png 1024w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-77-300x113.png 300w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-77-768x290.png 768w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-77-18x7.png 18w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-77.png 1501w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>In IP tables rule management, the <strong>order of rules<\/strong> is critical \u2014 packets are evaluated <strong>top-down<\/strong>, and the first matching rule determines the action.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large image-border\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"345\" src=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-76-1024x345.png\" alt=\"\" class=\"wp-image-7990\" srcset=\"https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-76-1024x345.png 1024w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-76-300x101.png 300w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-76-768x259.png 768w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-76-18x6.png 18w, https:\/\/wiki.xontel.com\/wp-content\/uploads\/2025\/08\/image-76.png 1518w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>To <strong>reorder rules<\/strong>:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>Identify the rule<\/strong> to move.<\/li>\n\n\n\n<li>Use the <strong>Move<\/strong> icons:\n<ul class=\"wp-block-list\">\n<li>\u23eb <strong>Move to Top<\/strong> \u2013 Places rule at the top.<\/li>\n\n\n\n<li>\ud83d\udd3c <strong>Move Up<\/strong> \u2013 Shifts rule one step higher.<\/li>\n\n\n\n<li>\ud83d\udd3d <strong>Move Down<\/strong> \u2013 Shifts rule one step lower.<\/li>\n\n\n\n<li>\u23ec <strong>Move to Bottom<\/strong> \u2013 Sends rule to the end.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Click the <strong>Submit<\/strong> button to <strong>apply<\/strong> changes.<\/li>\n\n\n\n<li>(Optional) Click <strong>Cancel<\/strong> to <strong>discard<\/strong> changes.<\/li>\n<\/ol>","protected":false},"author":1,"featured_media":0,"parent":7341,"menu_order":0,"template":"","manualdocumentationcategory":[45],"manual_doc_tag":[],"class_list":["post-7345","manual_documentation","type-manual_documentation","status-publish","hentry","manualdocumentationcategory-telsip"],"_links":{"self":[{"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manual_documentation\/7345","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manual_documentation"}],"about":[{"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/types\/manual_documentation"}],"author":[{"embeddable":true,"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/users\/1"}],"version-history":[{"count":3,"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manual_documentation\/7345\/revisions"}],"predecessor-version":[{"id":7997,"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manual_documentation\/7345\/revisions\/7997"}],"up":[{"embeddable":true,"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manual_documentation\/7341"}],"wp:attachment":[{"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/media?parent=7345"}],"wp:term":[{"taxonomy":"manualdocumentationcategory","embeddable":true,"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manualdocumentationcategory?post=7345"},{"taxonomy":"manual_doc_tag","embeddable":true,"href":"https:\/\/wiki.xontel.com\/ar\/wp-json\/wp\/v2\/manual_doc_tag?post=7345"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}