Need help firewall settings with archive server

All installation and configuration problems and questions

Moderators: gerski, enjay, williamconley, Op3r, Staydog, gardo, mflorell, MJCoate, mcargile, Kumba, Michael_N

Need help firewall settings with archive server

Postby dhijrwn » Tue Mar 24, 2020 11:49 am

Cluster setup
ViciBox v.8.1.2 ISO
VERSION: 2.14-733a
BUILD: 200115-1702
Asterisk 13.29.2-vici

Good day. I can't setup my archive server to accept tel server. When I'm turning on the firewall, it doesn't accept the ftp request from my telephone server, which will move the file to archive server, turning off the firewall will accept the recordings from telephone.

These are the errors:
Can't use an undefined value as a symbol reference at /usr/lib/perl5/5.18.2/Net/FTP/dataconn.pm line 54.
Can't call method "login" on an undefined value at /usr/share/astguiclient/AST_CRON_audio_3_ftp.pl line 507

When trying to ftp command to my archive.
it will just stuck on entering in passive mode.

My current solution for now is turning off the firewall and it will be working good. But I want to on the firewall and accept the ftp request from the telephone server. I already open port 21,22,80 with my tel server to archive.
Cluster setup i7-9700 cpu @ 3.00ghz 32GB ram 1xDB WEB ARCH 11xTEL 4core
ViciBox v.9.0.3 ISO VERSION:2.14-853a BUILD: 220328-1420
SVN: 3595 DB Schema: 1657 | Asterisk 13.29.2-vici
Zoiper 5 | VICIPhone| No Digium/Sangoma Hardware
dhijrwn
 
Posts: 149
Joined: Tue Jan 07, 2020 6:12 am

Re: Need help firewall settings with archive server

Postby williamconley » Tue Mar 24, 2020 12:00 pm

turning off the firewall will accept the recordings from telephone.

Put an exception to allow the IP address of the sending dialer into the FTP server.

Code: Select all
iptables -I INPUT 1 -s xx.xx.xx.xx -j ACCEPT


If the server in question has both public and private IPs, do it twice. Once for each. If that fixes the problem, you can use yast to permanently add the exception in the fireall (yast firewall has a custom section)
Vicidial Installation and Repair, plus Hosting and Colocation
Newest Product: Vicidial Agent Only Beep - Beta
http://www.PoundTeam.com # 352-269-0000 # +44(203) 769-2294
williamconley
 
Posts: 20018
Joined: Wed Oct 31, 2007 4:17 pm
Location: Davenport, FL (By Disney!)

Re: Need help firewall settings with archive server

Postby dhijrwn » Tue Mar 24, 2020 3:16 pm

williamconley wrote:
turning off the firewall will accept the recordings from telephone.

Put an exception to allow the IP address of the sending dialer into the FTP server.

Code: Select all
iptables -I INPUT 1 -s xx.xx.xx.xx -j ACCEPT


If the server in question has both public and private IPs, do it twice. Once for each. If that fixes the problem, you can use yast to permanently add the exception in the fireall (yast firewall has a custom section)


I put the command in the custom susefirewall on the arch server and it is working now. Thank you. :D
Cluster setup i7-9700 cpu @ 3.00ghz 32GB ram 1xDB WEB ARCH 11xTEL 4core
ViciBox v.9.0.3 ISO VERSION:2.14-853a BUILD: 220328-1420
SVN: 3595 DB Schema: 1657 | Asterisk 13.29.2-vici
Zoiper 5 | VICIPhone| No Digium/Sangoma Hardware
dhijrwn
 
Posts: 149
Joined: Tue Jan 07, 2020 6:12 am

Re: Need help firewall settings with archive server

Postby williamconley » Tue Mar 24, 2020 3:37 pm

note that this will be lost on reboot if you used that command at the CLI, depending on your settings. Be sure it still works after a reboot. Test it. Don't Derek it.
Vicidial Installation and Repair, plus Hosting and Colocation
Newest Product: Vicidial Agent Only Beep - Beta
http://www.PoundTeam.com # 352-269-0000 # +44(203) 769-2294
williamconley
 
Posts: 20018
Joined: Wed Oct 31, 2007 4:17 pm
Location: Davenport, FL (By Disney!)


Return to Support

Who is online

Users browsing this forum: Majestic-12 [Bot] and 79 guests