wardmundy
Nerd Uno
- Joined
- Oct 12, 2007
- Messages
- 19,206
- Reaction score
- 5,229
sed -i 's|quiet|quiet net.ifnames=0 biosdevdame=0|' /etc/default/grub
grub2-mkconfig -o /boot/grub2/grub.cfg
nameserver 8.8.8.8
setenforce 0
yum -y upgrade
yum -y install net-tools nano wget
wget http://incrediblepbx.com/update-kernel-devel
chmod +x update-kernel-devel
./update-kernel-devel
reboot
cd /root
wget http://incrediblepbx.com/incrediblepbx11.4.centos.tar.gz
tar zxvf incrediblepbx*
./IncrediblePBX*
HTTP request sent, awaiting response... 200 OK
Length: 32616 (32K) [text/plain]
Saving to: `knock-server-0.5-7.el6.nux.x86_64.rpm'
100%[============================================================================================================================================================>] 32,616 --.-K/s in 0.04s
2015-05-11 07:50:37 (756 KB/s) - `knock-server-0.5-7.el6.nux.x86_64.rpm' saved [32616/32616]
warning: knock-server-0.5-7.el6.nux.x86_64.rpm: Header V4 RSA/SHA1 Signature, key ID 85c6cd8a: NOKEY
Preparing... ########################################### [100%]
1:knock-server ########################################### [100%]
Starting knockd: could not open eth0: eth0: No such device exists (SIOCGIFHWADDR: No such device)
[FAILED]
Successfully reloaded
./IncrediblePBX11.sh: line 778: unexpected EOF while looking for matching `"'
./IncrediblePBX11.sh: line 779: syntax error: unexpected end of file
[root@borsenmcentee ~]#
/admin-pw-change
This script changes your admin password for FreePBX 2.11 access.
Enter new admin password (MAKE IT SECURE!!): NewPass
admin password will be changed to: NewPass
Press ENTER key to continue or Ctrl-C to abort...
eth0: error fetching interface information: Device not found
Done. Use browser to access FreePBX at http://
Trimline2 admin-pw-change merely looks up the IP address of your server using eth0 AFTER it resets the admin password. That lookup won't work until you change eth0 in the script. But changing the password should work just fine. Does ifconfig show that you have network connectivity?? Does iptables -nL show that you have access to the server from your IP address? Does disabling IPtables help: service iptables stop. If so, add the IP address of your workstation with /root/add-ip and then restart IPtables: iptables-restart.
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:4135 errors:0 dropped:0 overruns:0 frame:0
TX packets:4135 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:361613 (353.1 KiB) TX bytes:361613 (353.1 KiB)
venet0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:127.0.0.1 P-t-P:127.0.0.1 Bcast:0.0.0.0 Mask:255.255.255.255
inet6 addr: 2602:ffa0:200:aa::e5c2/64 Scope:Global
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
RX packets:755225 errors:0 dropped:0 overruns:0 frame:0
TX packets:380957 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:1084904364 (1.0 GiB) TX bytes:35747075 (34.0 MiB)
venet0:0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:99.99.30.218 P-t-P:99.99.30.218 Bcast:99.99.30.218 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
venet0:1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:99.99.30.22 P-t-P:99.99.30.22 Bcast:99.99.30.22 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
venet0:2 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:99.99.30.219 P-t-P:99.99.30.219 Bcast:99.99.30.219 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
venet0:3 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:99.99.30.220 P-t-P:99.99.30.220 Bcast:99.99.30.220 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
venet0:4 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:99.99.30.221 P-t-P:99.99.30.221 Bcast:99.99.30.221 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
venet0:5 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:99.99.30.222 P-t-P:99.99.30.222 Bcast:99.99.30.222 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
fail2ban-VSFTPD tcp -- anywhere anywhere tcp dpt:ftp
fail2ban-BadBots tcp -- anywhere anywhere multiport dports http,https
fail2ban-APACHE tcp -- anywhere anywhere
fail2ban-ASTERISK all -- anywhere anywhere
fail2ban-SSH tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp flags:ACK/ACK
ACCEPT all -- anywhere anywhere state ESTABLISHED
ACCEPT all -- anywhere anywhere state RELATED
ACCEPT udp -- anywhere anywhere udp spt:domain dpts:1024:65535
ACCEPT icmp -- anywhere anywhere icmp echo-reply
Edited out some characters..............
ACCEPT udp -- 8.3.252.23 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax
ACCEPT udp -- 8.14.120.23 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax
ACCEPT udp -- 8.17.37.23 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax
ACCEPT udp -- 66.54.140.46 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax
ACCEPT udp -- 66.54.140.47 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax
ACCEPT udp -- www.freenum.org anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- cpe-24-211-64-206.sc.res.rr.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- gvgw1.simonics.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- 209.216.15.70.static.sna.hosting.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- bser1.bingotelecom.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- pbx30.rentpbx.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- node04.dns-hosting.info anywhere udp dpts:sip:i-net-2000-npr
ACCEPT tcp -- node04.dns-hosting.info anywhere tcp dpts:sip:i-net-2000-npr
ACCEPT udp -- gw1.sip.us anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- gw2.sip.us anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- cr.anveo.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- 67.212.84.21 anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- static.206.39.9.176.clients.your-server.de anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- 25.prd1.tms.anveo.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- 50.22.102.242-static.reverse.softlayer.com anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- c-98-254-157-185.hsd1.fl.comcast.net anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- sip.didlogic.net anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- c-98-254-157-185.hsd1.fl.comcast.net anywhere udp dpts:sip:i-net-2000-npr
ACCEPT udp -- 64.2.142.26 anywhere udp dpts:sip:i-net-2000-npr
ACCEPT all -- 10.0.0.0/8 anywhere
ACCEPT all -- loopback/8 anywhere
ACCEPT all -- 192.168.0.0/16 anywhere
ACCEPT all -- localhost.localdomain anywhere
ACCEPT all -- rrcs-99-99-231-238.se.biz.rr.com anywhere <======= ME
ACCEPT all -- MyInstanceName.com anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain fail2ban-APACHE (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain fail2ban-ASTERISK (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain fail2ban-BadBots (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain fail2ban-SSH (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain fail2ban-VSFTPD (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
WARNING: Always run Incredible PBX VM behind a secure hardware-based firewall.
Does iptables -nL show that you have access to the server from your IP address? - Yes, it does display my IP address (nice job). Again, masked "me" out and my hostname .
Code:iptables -L Chain INPUT (policy DROP) target prot opt source destination fail2ban-VSFTPD tcp -- anywhere anywhere tcp dpt:ftp fail2ban-BadBots tcp -- anywhere anywhere multiport dports http,https fail2ban-APACHE tcp -- anywhere anywhere fail2ban-ASTERISK all -- anywhere anywhere fail2ban-SSH tcp -- anywhere anywhere tcp dpt:ssh ACCEPT all -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp flags:ACK/ACK ACCEPT all -- anywhere anywhere state ESTABLISHED ACCEPT all -- anywhere anywhere state RELATED ACCEPT udp -- anywhere anywhere udp spt:domain dpts:1024:65535 ACCEPT icmp -- anywhere anywhere icmp echo-reply Edited out some characters.............. ACCEPT udp -- 8.3.252.23 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax ACCEPT udp -- 8.14.120.23 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax ACCEPT udp -- 8.17.37.23 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax ACCEPT udp -- 66.54.140.46 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax ACCEPT udp -- 66.54.140.47 anywhere multiport dports sip,sip-tls,na-localise,5063,ca-1,ca-2,stanag-5066,authentx,5068,i-net-2000-npr,iax ACCEPT udp -- www.freenum.org anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- cpe-24-211-64-206.sc.res.rr.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- gvgw1.simonics.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- 209.216.15.70.static.sna.hosting.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- bser1.bingotelecom.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- pbx30.rentpbx.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- node04.dns-hosting.info anywhere udp dpts:sip:i-net-2000-npr ACCEPT tcp -- node04.dns-hosting.info anywhere tcp dpts:sip:i-net-2000-npr ACCEPT udp -- gw1.sip.us anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- gw2.sip.us anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- cr.anveo.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- 67.212.84.21 anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- static.206.39.9.176.clients.your-server.de anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- 25.prd1.tms.anveo.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- 50.22.102.242-static.reverse.softlayer.com anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- c-98-254-157-185.hsd1.fl.comcast.net anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- sip.didlogic.net anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- c-98-254-157-185.hsd1.fl.comcast.net anywhere udp dpts:sip:i-net-2000-npr ACCEPT udp -- 64.2.142.26 anywhere udp dpts:sip:i-net-2000-npr ACCEPT all -- 10.0.0.0/8 anywhere ACCEPT all -- loopback/8 anywhere ACCEPT all -- 192.168.0.0/16 anywhere ACCEPT all -- localhost.localdomain anywhere ACCEPT all -- rrcs-99-99-231-238.se.biz.rr.com anywhere <======= ME ACCEPT all -- MyInstanceName.com anywhere Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain fail2ban-APACHE (1 references) target prot opt source destination RETURN all -- anywhere anywhere Chain fail2ban-ASTERISK (1 references) target prot opt source destination RETURN all -- anywhere anywhere Chain fail2ban-BadBots (1 references) target prot opt source destination RETURN all -- anywhere anywhere Chain fail2ban-SSH (1 references) target prot opt source destination RETURN all -- anywhere anywhere Chain fail2ban-VSFTPD (1 references) target prot opt source destination RETURN all -- anywhere anywhere WARNING: Always run Incredible PBX VM behind a secure hardware-based firewall.
Looks like /etc/sysconfig/iptables is a mess. Not sure why. It should be pure IP addresses, no FQDNs. Those all need to be fixed. What type machine are you logging in from?? What installer did you use to build the system? We haven't had FQDNs in the IPtables setup for years!
setenforce 0
yum -y upgrade
yum -y install net-tools nano wget
wget http://incrediblepbx.com/update-kernel-devel
chmod +x update-kernel-devel
./update-kernel-devel
reboot
cd /root
wget http://incrediblepbx.com/incrediblepbx11.4.centos.tar.gz
tar zxvf incrediblepbx*
./IncrediblePBX*
Okay, the IP Address that was located in the ifconfig is now the default address via the control panel. I performed a reboot. Can't access via the web browser yet, but should I do a status, I see that the Public IP has not been assigned:
View attachment 1735
Link up your team and customers Phone System Live Chat Video Conferencing
Hosted or Self-managed. Up to 10 users free forever. No credit card. Try risk free.
Check your inbox!
We’ve sent you an email. Click on the button in the email body to verify your email address – (if you can not find it, check your spam folder).
Upon verification you will be directed to the 3CX setup wizard.