Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 2 subscribers
  • Views 2882 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple VoIP DMZ question

jengle21
I have a general VoIP deployment best/practices type question which may lead to more specific practical implementation questions. 

I currently have a PIAF instance connected exclusively to a DMZ interface. The PIAF instance is utilizing a GV number (XMPP)for making and receiving calls domestically and works just fine.

I would like to install another DMZ interface for my viatalk (International) VoIP service. I would prefer not to put anything in front of my UTM WAN interface but would be open to the idea if it makes more sense. 

Looking into the ports that need to be forwarded for viatalk (SIP) I am thinking that there may be a problem trying to "split" these two VoIP services onto separate DMZ interfaces.

Are there any ideas/recommendations on how to best accomplish this task? TIA for any thoughts or comments.


This thread was automatically locked due to age.
Parents
  • 0


    You shouldn't use DMZ -> any - any since it also allows connections from you DMZ back to your LAN. In stead try using something like DMZ -> Internet IPv4 / v6 -> any

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0


    You shouldn't use DMZ -> any - any since it also allows connections from you DMZ back to your LAN. In stead try using something like DMZ -> Internet IPv4 / v6 -> any

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Cookie Information Banner