[App_rpt-users] Issues still connecting after ip change

[Loren Tedford]

How my system is setup I will only give examples for this because i like to
hide my ports however their our some ports i cant hide..

Example Modem that changes ips every 2 to 3 hrs if not more..

ports forwarded to hard coded ips inside the network example
My repeater system has to ethernet ports I use them for back up ssh
retrieval
192.168.0.81 for Eth0
192.168.0.82 for Eth1

ssh ports example
port 222 and 223

now on the router for forwarding
192.168.0.81 :222,4569,5038,5070,5198,5199,5200
192.168.0.82 :223

no-ip is installed on the repeater which forwards to a domain i setup with
no-ip.. I dont like dyn dns they seem to never work correctly especially
when setup on modems that can be reset by the cable provider..

The problem in greater detail is allmon on the web front end on the virtual
private server located at hub.kc9zhv.com or domain kc9zhv.com seems to work
however allstar for some reason does not update the changes in ip
immediately I spent 4 hrs today off the data center connection because of
the issue..

Things that i did to try and resolve the issue
restart asterisk on the repeater
reboot repeater 3 times
reboot the data center although everyone connected never had any issues.

It seems like asterisk has a backend script that updates some where the ip
and node number where it is located and in our scenario at times it can be
difficult for this system to work correctly i wanted to know how i could
hard code this to the data center so that the repeater even if it changed
ips could be pointed back to the domain i have forwarded rpt.kc9zhv.com any
thoughts ideas how i could hard code these nodes?



Loren Tedford (KC9ZHV)
Email: lorentedford at gmail.com
Main Line:1-631-686-8878 Option 1 for Loren.
Fax Line 1:1-618-551-2755
Fax Line 2:1-631-686-8892 (New Fax line)
Cell: 618-553-0806
http://www.lorentedford.com
http://www.kc9zhv.com
http://hub.kc9zhv.com

On Tue, Oct 20, 2015 at 5:30 PM, Bryan D. Boyle <bdboyle at bdboyle.com> wrote:

> On 10/20/2015 5:27 PM, Loren Tedford wrote:
>
>> My isp is still changing my ip about every 2 to 3 hours i managed to get
>> a dyndns type application to run through linux so i have constant ssh
>> access to the machine however my script i put in crontab -e is not
>> working to grab the new ip and email it nor is it restarting the server
>> if the ip had changed.. I am now trying to figure out if asterisk needs
>> to update info to allstar and how to do this..
>>
>
> You don't need to go through crontabs and such; the network hardware
> should do it all for you.
>
> Your router should be set to do NAT'ing to your internal local network;
> most routers made in the last 10 years have the capability to talk to the
> dynamic DNS update services when they discover an IP change on the outside
> interface.
>
> You register with DYNDNS or another service with a fixed domain name, and
> use the DYNAMIC DNS as your authoritative DNS for the purposes of
> establishing your presence on the network.
>
> Assuming you have port forwarding set up properly, your inbound traffic on
> the IAX port gets forwarded to the NAT IP address of your asterisk box, and
> if you're enabling SSH to the outside world, then you forward that port
> also, on the router inbound. If all you have behind the router is your
> asterisk box, I'd not enable any other inbound ports.  You're only inviting
> in the scan bots from the pacific and eastern european malcontents.
>
> Allstarlink will recognize the changing IP as your server phones home
> occasionally.  So, repeaters outside of your own will be able to connect.
>
> Your addresses behind your router never change; I suggest using
> 192.168.1.x as the network, 255.255.255.0 (or 0xffffff00) as your netmask,
> and whatever the internal port on the router (is usually the x.x.x.1
> address) as your gateway.
>
> If you have multiple repeaters on the same asterisk instance behind your
> NAT'd router/firewall, then you have to make the appropriate entries in
> your config files so you can register properly on the internal network.
>
> If I've left anything out...I'm sure others will chime in.
>
> (This is being done on a whole number of systems I know of, successfully,
> for many years.  I don't do it this way, since I signed up for business
> class service with fixed IPs.  The business class service costs a bit more,
> but the QoS is higher, and business service has priority over the consumer
> internet in the Philly area.  And since I run web servers for various
> interests and organizations, it's not allowed on consumer class
> service...so, had to go with the business class and have not been
> disappointed.  Only drop out I had was post Sandy (but, then, the entire
> region was out for almost a week electrical/phone/cable/internet).)
>
> _______________________________________________
> App_rpt-users mailing list
> App_rpt-users at ohnosec.org
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
>
> To unsubscribe from this list please visit
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users and scroll down
> to the bottom of the page. Enter your email address and press the
> "Unsubscribe or edit options button"
> You do not need a password to unsubscribe, you can do it via email
> confirmation. If you have trouble unsubscribing, please send a message to
> the list detailing the problem.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.keekles.org/pipermail/app_rpt-users/attachments/20151020/07914d44/attachment.html>