[CentOS] PREROUTING - DNAT with iptables for an ASTERISK BOX

Theo Band theo.band at xanadu-wireless.com
Fri Mar 9 14:17:20 UTC 2007

Feizhou wrote:
>> You can fill in the variables yourself:
>> iptables -A FORWARD -i $EXTIF -o $INTIF -m multiport -p udp --dport 
>> 3478,4569,5060,10000:20000 -s $UNIVERSE -j ACCEPT
>> iptables -t nat -A PREROUTING -i $EXTIF -m multiport -p udp --dport 
>> 3478,4569,5060,10000:20000 -j DNAT --to-destination
>> Port 10000:20000 are needed for the RTP traffic, configure it in 
>> rtp.conf
> Hmm, I suppose one has to do the same on the client side?
> I have an asterisk box that was behind a natting router (all ports 
> forwarded to the asterisk box) that could accept connections from 
> other clients but not from one client that was behind a natting router.
It should work, but you have to setup this client with NAT=yes in the 


More information about the CentOS mailing list