Same issue here. When I place eth0 in "External" zone where it is supposed to be, remote access is blocked. Can't even get into the GUI. The FreePBX server is on a static public IP, no NAT. I have placed both the IP address and the dynamic DNS URL (no-ip.org) in the "trusted" zone without effect. The only way to get back to the GUI and enable calling is to go into the CLI and shut down the ipv4tables service. Then I can get into the GUI remotely and turn off the firewall, then restart the IPV4tables service so that at least fail2ban is working.
↧