Issues still connecting after ip change

App_rpt-users
1

My isp is still changing my ip about every 2 to 3 hours i managed to get a dyndns type application to run through linux so i have constant ssh access to the machine however my script i put in crontab -e is not working to grab the new ip and email it nor is it restarting the server if the ip had changed… I am now trying to figure out if asterisk needs to update info to allstar and how to do this…

···

Loren Tedford (KC9ZHV)
Email: lorentedford@gmail.com

Main Line:1-631-686-8878 Option 1 for Loren.

Fax Line 1:1-618-551-2755

Fax Line 2:1-631-686-8892 (New Fax line)

Cell: 618-553-0806

http://www.lorentedford.com

http://www.kc9zhv.com

http://hub.kc9zhv.com

2

You don't need to go through crontabs and such; the network hardware should do it all for you.

Your router should be set to do NAT'ing to your internal local network; most routers made in the last 10 years have the capability to talk to the dynamic DNS update services when they discover an IP change on the outside interface.

You register with DYNDNS or another service with a fixed domain name, and use the DYNAMIC DNS as your authoritative DNS for the purposes of establishing your presence on the network.

Assuming you have port forwarding set up properly, your inbound traffic on the IAX port gets forwarded to the NAT IP address of your asterisk box, and if you're enabling SSH to the outside world, then you forward that port also, on the router inbound. If all you have behind the router is your asterisk box, I'd not enable any other inbound ports. You're only inviting in the scan bots from the pacific and eastern european malcontents.

Allstarlink will recognize the changing IP as your server phones home occasionally. So, repeaters outside of your own will be able to connect.

Your addresses behind your router never change; I suggest using 192.168.1.x as the network, 255.255.255.0 (or 0xffffff00) as your netmask, and whatever the internal port on the router (is usually the x.x.x.1 address) as your gateway.

If you have multiple repeaters on the same asterisk instance behind your NAT'd router/firewall, then you have to make the appropriate entries in your config files so you can register properly on the internal network.

If I've left anything out...I'm sure others will chime in.

(This is being done on a whole number of systems I know of, successfully, for many years. I don't do it this way, since I signed up for business class service with fixed IPs. The business class service costs a bit more, but the QoS is higher, and business service has priority over the consumer internet in the Philly area. And since I run web servers for various interests and organizations, it's not allowed on consumer class service...so, had to go with the business class and have not been disappointed. Only drop out I had was post Sandy (but, then, the entire region was out for almost a week electrical/phone/cable/internet).)

···

On 10/20/2015 5:27 PM, Loren Tedford wrote:

My isp is still changing my ip about every 2 to 3 hours i managed to get
a dyndns type application to run through linux so i have constant ssh
access to the machine however my script i put in crontab -e is not
working to grab the new ip and email it nor is it restarting the server
if the ip had changed.. I am now trying to figure out if asterisk needs
to update info to allstar and how to do this..

3

How my system is setup I will only give examples for this because i like to hide my ports however their our some ports i cant hide…

Example Modem that changes ips every 2 to 3 hrs if not more…

ports forwarded to hard coded ips inside the network example

My repeater system has to ethernet ports I use them for back up ssh retrieval

192.168.0.81 for Eth0

192.168.0.82 for Eth1

ssh ports example

port 222 and 223

now on the router for forwarding

192.168.0.81 :222,4569,5038,5070,5198,5199,5200

192.168.0.82 :223

no-ip is installed on the repeater which forwards to a domain i setup with no-ip… I dont like dyn dns they seem to never work correctly especially when setup on modems that can be reset by the cable provider…

The problem in greater detail is allmon on the web front end on the virtual private server located at hub.kc9zhv.com or domain kc9zhv.com seems to work however allstar for some reason does not update the changes in ip immediately I spent 4 hrs today off the data center connection because of the issue…

Things that i did to try and resolve the issue

restart asterisk on the repeater

reboot repeater 3 times

reboot the data center although everyone connected never had any issues.

It seems like asterisk has a backend script that updates some where the ip and node number where it is located and in our scenario at times it can be difficult for this system to work correctly i wanted to know how i could hard code this to the data center so that the repeater even if it changed ips could be pointed back to the domain i have forwarded rpt.kc9zhv.com any thoughts ideas how i could hard code these nodes?

···

On Tue, Oct 20, 2015 at 5:30 PM, Bryan D. Boyle bdboyle@bdboyle.com wrote:

My isp is still changing my ip about every 2 to 3 hours i managed to get

a dyndns type application to run through linux so i have constant ssh

access to the machine however my script i put in crontab -e is not

working to grab the new ip and email it nor is it restarting the server

if the ip had changed… I am now trying to figure out if asterisk needs

to update info to allstar and how to do this…
On 10/20/2015 5:27 PM, Loren Tedford wrote:

You don’t need to go through crontabs and such; the network hardware should do it all for you.

Your router should be set to do NAT’ing to your internal local network; most routers made in the last 10 years have the capability to talk to the dynamic DNS update services when they discover an IP change on the outside interface.

You register with DYNDNS or another service with a fixed domain name, and use the DYNAMIC DNS as your authoritative DNS for the purposes of establishing your presence on the network.

Assuming you have port forwarding set up properly, your inbound traffic on the IAX port gets forwarded to the NAT IP address of your asterisk box, and if you’re enabling SSH to the outside world, then you forward that port also, on the router inbound. If all you have behind the router is your asterisk box, I’d not enable any other inbound ports. You’re only inviting in the scan bots from the pacific and eastern european malcontents.

Allstarlink will recognize the changing IP as your server phones home occasionally. So, repeaters outside of your own will be able to connect.

Your addresses behind your router never change; I suggest using 192.168.1.x as the network, 255.255.255.0 (or 0xffffff00) as your netmask, and whatever the internal port on the router (is usually the x.x.x.1 address) as your gateway.

If you have multiple repeaters on the same asterisk instance behind your NAT’d router/firewall, then you have to make the appropriate entries in your config files so you can register properly on the internal network.

If I’ve left anything out…I’m sure others will chime in.

(This is being done on a whole number of systems I know of, successfully, for many years. I don’t do it this way, since I signed up for business class service with fixed IPs. The business class service costs a bit more, but the QoS is higher, and business service has priority over the consumer internet in the Philly area. And since I run web servers for various interests and organizations, it’s not allowed on consumer class service…so, had to go with the business class and have not been disappointed. Only drop out I had was post Sandy (but, then, the entire region was out for almost a week electrical/phone/cable/internet).)

App_rpt-users mailing list

App_rpt-users@ohnosec.org

http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users

To unsubscribe from this list please visit http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users and scroll down to the bottom of the page. Enter your email address and press the “Unsubscribe or edit options button”

You do not need a password to unsubscribe, you can do it via email confirmation. If you have trouble unsubscribing, please send a message to the list detailing the problem.

Loren Tedford (KC9ZHV)
Email: lorentedford@gmail.com

Main Line:1-631-686-8878 Option 1 for Loren.

Fax Line 1:1-618-551-2755

Fax Line 2:1-631-686-8892 (New Fax line)

Cell: 618-553-0806

http://www.lorentedford.com

http://www.kc9zhv.com

http://hub.kc9zhv.com

4

You could always install openvpn server on the hub and the clients on the nodes with the changing ip addresses. When the tunnel drops it will resync. Then you could use the tunnel ip addresses for the connections and just redirect all the traffic through the server.

···

On Oct 20, 2015, at 5:27 PM, Loren Tedford lorentedford@gmail.com wrote:

My isp is still changing my ip about every 2 to 3 hours i managed to get a dyndns type application to run through linux so i have constant ssh access to the machine however my script i put in crontab -e is not working to grab the new ip and email it nor is it restarting the server if the ip had changed… I am now trying to figure out if asterisk needs to update info to allstar and how to do this…

Loren Tedford (KC9ZHV)
Email: lorentedford@gmail.com

Main Line:1-631-686-8878 Option 1 for Loren.

Fax Line 1:1-618-551-2755

Fax Line 2:1-631-686-8892 (New Fax line)

Cell: 618-553-0806

http://www.lorentedford.com

http://www.kc9zhv.com

http://hub.kc9zhv.com

App_rpt-users mailing list
App_rpt-users@ohnosec.org
http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users

To unsubscribe from this list please visit http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users and scroll down to the bottom of the page. Enter your email address and press the “Unsubscribe or edit options button”
You do not need a password to unsubscribe, you can do it via email confirmation. If you have trouble unsubscribing, please send a message to the list detailing the problem.