UDP Security


I started using an Asterisk Server, initially as a voicemail system for my subscribers that are managed by another Proxy. Currently, signaling (port 5060) is only allowed from the Proxy, which also relays the RTP.

I would like to start using the Asterisk for additional purposes and allow it also to relay RTP itself.

For that, I need to open UDP ports 10000-20000 (this is the range defined in my rtp.conf) from any IP address. Signaling will continue to come from other (trusted) IP addresses.

It is running on CentOS 4. Is there a risk in opening this port range in my firewall?