freeswitch/conf/autoload_configs/acl.conf.xml

<configuration name="acl.conf" description="Network Lists">
  <network-lists>

    <list name="dl-candidates" default="allow">
      <node type="deny" cidr="10.0.0.0/8"/>
      <node type="deny" cidr="172.16.0.0/12"/>
      <node type="deny" cidr="192.168.0.0/16"/>
    </list>

    <list name="rfc1918" default="deny">
      <node type="allow" cidr="10.0.0.0/8"/>
      <node type="allow" cidr="172.16.0.0/12"/>
      <node type="allow" cidr="192.168.0.0/16"/>
    </list>

    <list name="lan" default="allow">
      <node type="deny" cidr="192.168.42.0/24"/>
      <node type="allow" cidr="192.168.42.42/32"/>
    </list>

    <list name="strict" default="deny">
      <node type="allow" cidr="208.102.123.124/32"/>
    </list>
    <!--
	This will traverse the directory adding all users 
	with the cidr= tag to this ACL, when this ACL matches
	the users variables and params apply as if they 
	digest authenticated.
    -->
    <list name="domains" default="deny">
      <node type="allow" domain="$${domain}"/>
    </list>

  </network-lists>
</configuration>
add acl config git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@7967 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-03-26 18:18:06 -04:00			`<configuration name="acl.conf" description="Network Lists">`
			`<network-lists>`
more docs in the configs git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@9724 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-09-29 01:26:38 -04:00
update git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@8032 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-04-04 18:01:53 -04:00			`<list name="dl-candidates" default="allow">`
			`<node type="deny" cidr="10.0.0.0/8"/>`
			`<node type="deny" cidr="172.16.0.0/12"/>`
			`<node type="deny" cidr="192.168.0.0/16"/>`
			`</list>`
more docs in the configs git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@9724 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-09-29 01:26:38 -04:00
add rfc1918 acl git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@7968 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-03-26 18:19:38 -04:00			`<list name="rfc1918" default="deny">`
			`<node type="allow" cidr="10.0.0.0/8"/>`
			`<node type="allow" cidr="172.16.0.0/12"/>`
			`<node type="allow" cidr="192.168.0.0/16"/>`
			`</list>`

add acl config git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@7967 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-03-26 18:18:06 -04:00			`<list name="lan" default="allow">`
			`<node type="deny" cidr="192.168.42.0/24"/>`
			`<node type="allow" cidr="192.168.42.42/32"/>`
			`</list>`

			`<list name="strict" default="deny">`
			`<node type="allow" cidr="208.102.123.124/32"/>`
			`</list>`
more docs in the configs git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@9724 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-09-29 01:26:38 -04:00			`<!--`
			`This will traverse the directory adding all users`
			`with the cidr= tag to this ACL, when this ACL matches`
			`the users variables and params apply as if they`
			`digest authenticated.`
			`-->`
this is an example to go with the last commit from tony. You can now have a cidr= attr on a user in the directory which is then used to build an acl list for that domain. git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@9057 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-07-16 13:47:57 -04:00			`<list name="domains" default="deny">`
			`<node type="allow" domain="$${domain}"/>`
adding a sip_acl to the default config for ip auth on the internal profile git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@9053 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-07-16 11:52:22 -04:00			`</list>`

add acl config git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@7967 d0543943-73ff-0310-b7d9-9358b9ac24b2 2008-03-26 18:18:06 -04:00			`</network-lists>`
			`</configuration>`