wa4zlw
Member
- Joined
- Feb 14, 2008
- Messages
- 845
- Reaction score
- 22
Incredible PBX 11-12.1 for CentOS 6
Asterisk: UP Apache: UP MySQL: UP
SendMail: UP IPtables: DN SSH: UP
LAN port: UP Fail2Ban: UP Webmin: UP
RAM: CentOS release 6.6 Disk:45G
Asterisk 11.18.0 Incredible GUI 12.0.30
Private IP: 10.196.4.10 10.196.100.10
Public IP: 173.x.y.z
System Time: Mon Sep 7 15:20:22 EDT 2015
I've been trying to add stuff ot iptables for some remote endpoints and looks like iptables is down now as shown above.
last run of add/del:
It seemed to have been working earlier and stopped.
I do have iptables being shown in webmin to just look not change.
this is a production box....any ideas?
Thanks leon
Asterisk: UP Apache: UP MySQL: UP
SendMail: UP IPtables: DN SSH: UP
LAN port: UP Fail2Ban: UP Webmin: UP
RAM: CentOS release 6.6 Disk:45G
Asterisk 11.18.0 Incredible GUI 12.0.30
Private IP: 10.196.4.10 10.196.100.10
Public IP: 173.x.y.z
System Time: Mon Sep 7 15:20:22 EDT 2015
I've been trying to add stuff ot iptables for some remote endpoints and looks like iptables is down now as shown above.
last run of add/del:
Code:
root@pbx:~ $ ./add-ip reading 73.130.241.255
add-ip (c) Copyright 2012-2014, Ward Mundy & Associates, LLC
This script modifies critical security files on your server.
This script opens complete SIP and IAX server access to your
server for this IP address: 73.130.241.255
SIP or IAX activity from this address may damage your server!
BY PROCEEDING, YOU AGREE TO ASSUME ALL RISKS FROM PROPER OR
IMPROPER FUNCTIONING OF THIS SOFTWARE, WHETHER INTENTIONAL OR NOT.
ABSOLUTELY NO WARRANTIES, EXPRESS OR IMPLIED, ARE PROVIDED
INCLUDING FITNESS FOR PARTICULAR USE AND MERCHANTABILITY.
YOU ALONE ARE RESPONSIBLE FOR DETERMINING WHETHER THIS
IPTABLES SECURITY SOFTWARE WILL MEET YOUR NEEDS AND EXPECTATIONS!
THE SOFTWARE IS PROVIDED AS IS. EXAMINE THE SCRIPT CAREFULLY BEFORE
PROCEEDING! PROCEED ONLY IF YOUR AGREE TO ALL OF THESE TERMS OF USE.
To proceed at your own risk, press Enter. Otherwise, Ctrl-C to abort.
IP: 73.x.y.z
The following services are available for activation with 73.130.241.255:
0 - ALL Services
1 - SIP (UDP)
2 - SIP (TCP)
3 - IAX
4 - Web
5 - WebMin
6 - FTP
7 - t*f*t*p
8 - SSH
9 - FOP
Enter the services desired by number. Separate entries with commas.
For example: 1,4 would activate standard UDP SIP plus web access.
0
The following services have been enabled for 73.x.y.z:
ALL Services
If there's an error in enabled services, run del-acct and try again.
iptables: Setting chains to policy ACCEPT: filter mangle na[ OK ]
iptables: Flushing firewall rules: [ OK ]
iptables: Unloading modules: [ OK ]
iptables: Applying firewall rules: [FAILED]
No IPtables problems found.
Stopping fail2ban: [ OK ]
Starting fail2ban: mkdir: cannot create directory `/var/run/fail2ban': File exists
[ OK ]
To display current iptables rules in effect for this IP address, press Enter.
The following iptables rules now are in effect for 73.x.y.z:
WARNING: Always run Incredible PBX VM behind a secure hardware-based firewall.
root@pbx:~ $
It seemed to have been working earlier and stopped.
I do have iptables being shown in webmin to just look not change.
this is a production box....any ideas?
Thanks leon