vicidial.org

Hi,

I have ViciBox v.8.0.1 installed
VERSION: 2.14-667a
BUILD: 180331-1715

I was concerned about the security of my server. I changed the ssh port, sip port (on which SIP is registered with DID or trunk provider), have secure password. I was trying to add IPTables and Fail2ban. Found a walkthrough for Fail2Ban

http://www.vicidial.org/VICIDIALforum/viewtopic.php?f=8&t=38060&p=131913&hilit=iptables#p131913

But I was unable to setup IPTables. Can you please guide me.

On Centos and Ubuntu servers I managed to installed them but vicidial is on SuSE linux which I'm not familiar with.

Also what other measures I can take to secure my server.

I was unable to setup IPTables

iptables was probably already running. if it's not:

Code: Select all

yast firewall

This allows you to enable/disable iptables at system start and/or to start/stop it in that screen

Note that these changes can lock you out so be sure you have access to the physical console in case you do lock yourself out.

Agreed, that's why i'm not messing with it. I was reading a post of your where you mentioned that you posted a walk-through, but couldn't find it. Can you share its link or re-post it?

Dynamic Good Guys firewall was published years ago. It begins with instructions for whitelist lockdown using the stock firewall in OpenSuSE as pre-configured by Vicibox. After that lockdown is done, the installation of DGG begins. But if you stop right there, you have a whitelisted server that's very secure.

Googling Dynamic Good Guys usually lands on the site, but here's the link:

http://viciwiki.com/index.php/DGG

Note that the first section is "Lockdown in Preparation for Install"