The new Vicibox 8.1 integrated firewall

Support forum for the ViciBox ISO Server Install and ISO LiveCD Demo

Moderators: enjay, williamconley, Staydog, mflorell, MJCoate, mcargile, Kumba

Re: The new Vicibox 8.1 integrated firewall

Postby williamconley » Thu Aug 01, 2019 11:57 am

depends a lot on what "it" is. detailed step by step of what you did would be useful to determine whether it should survive reboot or not. if all you did was run the iptables command to insert a rule, that will not survive reboot. yast firewall changes do survive reboot. Dynamic Good Guys has some instructions to allow editing a conf file which will allow both surviving reboot AND placing a comment in the file so you know why the entry exists.
Vicidial Installation and Repair, plus Hosting and Colocation
Newest Product: NonDisruptive Lead Loader for Enterprise Vicidial Clusters.
(IE: Keep on dialing even while loading large lists!)
http://www.PoundTeam.com # 352-269-0000 # +44(203) 769-2294
williamconley
 
Posts: 19647
Joined: Wed Oct 31, 2007 4:17 pm
Location: Davenport, FL (By Disney!)

Re: The new Vicibox 8.1 integrated firewall

Postby davesdatasystems » Fri Aug 02, 2019 2:20 pm

I am somehow missing something, i dont really know. But instead of going through all the minor things, i will just say what i would like

i seen the option for viciful, never got it to work, and i dont know what other steps to take, i try to take advice in the thread but no luck

I even went with the simple, turn on viciwhite, leave viciblack off, and enabled it, but still able to get sip traffic from other locations.

what steps would i take to just block everything other then the IPs i put in viciwhite. ie using viciful. i have two static ips i can access anything with, so i am not to worried, plus i have the box it self i have access too.
block everything, ssh access, sip, web, where if i dont have the ip in the vici white list in admin>ip list that it will be completely blocked.

thanks, sorry if i am a pain.
VICIBOX V9.0.1 installed via ISO
VERSION: 2.14-749a
BUILD: 200407-1030
Asterisk 13.27.1
Custom PC
Processor FX8350
motherboard MSI - 990FXA-GAMING
RAM 16 gigs HyperX DDR3 Ram
No Digium/Sangoma Hardware
No Extra Software After Installation
davesdatasystems
 
Posts: 132
Joined: Thu Aug 25, 2011 11:39 am

Re: The new Vicibox 8.1 integrated firewall

Postby williamconley » Sun Aug 11, 2019 8:46 pm

simple whitelist is not related to vicidial, but to iptables and yast firewall. DGG as mentioned previously has instructions for simple whitelist (as a prerequisite to installing DGG). After that whitelist modification, your system will only allow authorized IPs and responses from whatever your system reached out to (eg: if your system requests a DNS entry, the response will be automatically allowed through the firewall). At that point you are secure and can manually add authorized IPs. This is done through four methods:

1) yast firewall custom rules
2) edit the conf file mentioned in the DGG installation
3) install DGG, which provides simple web interface addition method
4) Vicibox integrated firewall.

It is worthy of note that they can ALL be used and will not harm each other by being used interactively.
Vicidial Installation and Repair, plus Hosting and Colocation
Newest Product: NonDisruptive Lead Loader for Enterprise Vicidial Clusters.
(IE: Keep on dialing even while loading large lists!)
http://www.PoundTeam.com # 352-269-0000 # +44(203) 769-2294
williamconley
 
Posts: 19647
Joined: Wed Oct 31, 2007 4:17 pm
Location: Davenport, FL (By Disney!)

Re: The new Vicibox 8.1 integrated firewall

Postby Gagandep » Mon Jun 15, 2020 10:05 pm

This is really wonderful. I just try to move it in vicibox 8.0.1 but not working . Can anyone tell me how to use this on vivibox 8.0.1
Gagandep
 
Posts: 1
Joined: Tue Jun 02, 2020 10:16 pm

Re: The new Vicibox 8.1 integrated firewall

Postby carpenox » Mon Jun 15, 2020 10:09 pm

not sure if this will work for 8.0.1 but try this:

rpm -i https://download.opensuse.org/repositor ... .1.src.rpm --force

Good luck,

-Nox
ViciBox v9.0.3 | Version: 2.14-779a | BUILD: 201123-2300 | SVN Version: 3331 | DB Schema Version: 1612 | Asterisk 13.34.0
http://www.CyburityLLC.com -:- 844-PC-SATA-2 -:- www.contactcentersRus.com -:- Whatsapp: +19549477572 -:- Skype: live:carpenox_3
carpenox
 
Posts: 774
Joined: Wed Apr 08, 2020 2:02 am
Location: Coral Springs, FL

Previous

Return to ViciBox Server Install and Demo

Who is online

Users browsing this forum: No registered users and 10 guests