Hi,
I have been running Asterisk and various flavors of PIAF, Trixbox, etc since Ward lived here in Atlanta. I turned John Mullinax (RIP) on to the platform many years ago and he went on to somewhat of an Asterisk "Celebrity", or at least he become well known, and actually ended up helping me out a lot as he gained much more experience than me. (For you Hams out there, I was his "Elmer" in Ham Radio and he was my local repeater trustee. I lost a great friend!)
I have been rocking along 10 years with some ancient versions running on a couple of servers in a CoLo facility. I lagged in upgrading them until there was really no path other than start new. So I spun up a couple in the cloud. Now I'm needing help and there is no John Mullinax to turn to. :-(
This particular PBX is running asterisk 11.18.0 incredible gui 12.0.30 (but I think it upgraded to 12.0.70). It is on ubuntu 14.04.2 lts. I'm posting here in PIAF 3 and hope this is the correct location.
Item 1: Service observing. There is a feature called Service Observing that was in many commercial PBXs, which allowed a supervisor to silently monitor (and break in to help) users or agent's calls. In the olden days, we had Chanspy and I thought there was a command someplace to use it. However now I can find no way for a supervisor to use this function. Can anyone tell me how to implement this now?
Item 2: Port Knocking, Travelin Man, or whatever the correct term is: I can't seem to keep remote static IPs able to access the system without timing out and knocking again. I must be misunderstanding the procedure to add them. These are ATAs and Soft Phones in remte locations. Somehow I did manage to keep the hard IP phones logged in. And to reiterate, the remote IPs are also static so I don't think there's a problem there.
When I installed, I received this message:
"WARNING: Server access locked down to server IP address and your current IP address.
Modify /etc/iptables/rules.v4 as needed and restart IPtables BEFORE logging out!
To restart IPtables, issue command: iptables-restart"
When I add those IPs to the file and restart IPtables, I would expect it to become permanent. However I then use iptables -L command and don't see the new entries. I see some entries that I must have entered somehow before but not the new ones. And I have to keep knocking...
Could someone please help me with the correct, reliable procedure to add these addresses so they will stay, otherwise I will have to really downgrade my security.
Thanks you very much!
Ralph
I have been running Asterisk and various flavors of PIAF, Trixbox, etc since Ward lived here in Atlanta. I turned John Mullinax (RIP) on to the platform many years ago and he went on to somewhat of an Asterisk "Celebrity", or at least he become well known, and actually ended up helping me out a lot as he gained much more experience than me. (For you Hams out there, I was his "Elmer" in Ham Radio and he was my local repeater trustee. I lost a great friend!)
I have been rocking along 10 years with some ancient versions running on a couple of servers in a CoLo facility. I lagged in upgrading them until there was really no path other than start new. So I spun up a couple in the cloud. Now I'm needing help and there is no John Mullinax to turn to. :-(
This particular PBX is running asterisk 11.18.0 incredible gui 12.0.30 (but I think it upgraded to 12.0.70). It is on ubuntu 14.04.2 lts. I'm posting here in PIAF 3 and hope this is the correct location.
Item 1: Service observing. There is a feature called Service Observing that was in many commercial PBXs, which allowed a supervisor to silently monitor (and break in to help) users or agent's calls. In the olden days, we had Chanspy and I thought there was a command someplace to use it. However now I can find no way for a supervisor to use this function. Can anyone tell me how to implement this now?
Item 2: Port Knocking, Travelin Man, or whatever the correct term is: I can't seem to keep remote static IPs able to access the system without timing out and knocking again. I must be misunderstanding the procedure to add them. These are ATAs and Soft Phones in remte locations. Somehow I did manage to keep the hard IP phones logged in. And to reiterate, the remote IPs are also static so I don't think there's a problem there.
When I installed, I received this message:
"WARNING: Server access locked down to server IP address and your current IP address.
Modify /etc/iptables/rules.v4 as needed and restart IPtables BEFORE logging out!
To restart IPtables, issue command: iptables-restart"
When I add those IPs to the file and restart IPtables, I would expect it to become permanent. However I then use iptables -L command and don't see the new entries. I see some entries that I must have entered somehow before but not the new ones. And I have to keep knocking...
Could someone please help me with the correct, reliable procedure to add these addresses so they will stay, otherwise I will have to really downgrade my security.
Thanks you very much!
Ralph