Tutorials
The assorted pdf files contain information and how to guides on various aspects of PBX in a Flash. Most documents are not distributed under Open Source license and remain the property of the authors. That being said all documents can be freely copied and used, they just are not allowed to be altered. Only pdf files are stored here and they all have an authenticity stamp embedded. Access to the source documents (word, open office, etc) are the sole responsibility of the authors of the respective documents.
If you wish to contribute please send us email at the address on the contact page.
PBX In A Flash 1.2 Install Manual
Submitted by Admin on April 27, 2008 - 8:22pm.Overview
This is the initial installation manual for PBX in a Flash ISO Version 1.2. It contains detailed information that will assist you with the initial installation of our product. Every attempt has been made to ensure the accuracy of the information.
Author
Tom King
License
Copyright Material Licensed to use and distribute but not to alter. If you wish to alter the material please contact the author directly.
Port Number Assignments
Submitted by Admin on March 12, 2008 - 8:23pm.Information
PBX in a Flash comes with a firewall running and various ports already assigned for operation. Some are standard ports and others are non standard ports. You should decide if you are going to be accessing these various services remotely or at the console and then disable the ones you are not using. It is also a good idea to change some of the ports to random ports to help enhance security.
Ports Table
| Port Number | Protocol | Service | Standard | Note | Port Can be changed or disabled |
| 21 | tcp | ftp | Yes | 1 | Yes |
| 22 | tcp | ssh | Yes | 2 | Yes - Recommended |
| 69 | udp | tftp | Yes | 3 | Yes - Not recommended |
| 80 | tcp | http | Yes | 4 | Yes |
| 443 | tcp | https | Yes | 5 | Yes Not Recommended |
| 4445 | tcp | fop | Yes | 6 | Yes * |
| 4569 | udp | iax2 | Yes | 7 | No |
| 5000-5082 | udp | sip | Yes | 8 | No |
| 5038 | tcp | AstMgr | Yes | 9 | No |
| 9001 | tcp | webmin | No | 10 | Yes |
| 9022 | tcp | ssh* | No | 2 | Yes |
| 9080 | tcp | http | No | 4 | Yes |
| 10000-20000 | udp | sip | Yes | 8 | No |
Notes
- Ftp is a common process used to transfer files. This may be a good thing for a test system however for a production server I recommend you turn it off
- Ssh is the way you log into the CLI of PIAF. For example putty uses port 22. This can be a bit of a security hazard so I recommend you disable this port and change 9022 to some thing random if you have to have remote access to PIAF in a production environment
- Tftp protocol is used extensively by hard phones to get information and configuration stuff from PIAF. It is not recommended you change this port and leave it open internally behind your firewall. If you have hardphones outside of your local network you will need to forward this port to PIAF
- Http is the backbone of the web and is critical to your browser. That being said in a production environment I recommend you disable port 80. Port 9080 is open as an alternate but you may want to change this port to a randomly assigned one for better security on your production PIAF machine.
- Https allows you to have a secure http pipe between your PIAF and a remote browser. I recommend you do not change this port
- Fop is a part of FreePBX (Operators Panel) If you don't use this feature you should be able to disable it.
- IAX2 this port needs to be enabled and port forwarded. IAX2 is a standard VOIP transport protocol
- Sip these ports need to be enanled and port forwarded. SIP is a standard VOIP transport protocol
- AstMgr This port should not be altered
- Webmin the swiss army knife for linux administration. This port should be changed on a production machine if you need remote access to the PIAF box from outside of your local network.
Port Forwarding from your Router to PIAF
If you wish to access any of the ports listed above from outside of your local network (assuming PIAF is behind your router) you will specifically have to port forward various ports to your PIAF box. This assumes you have implemented a static IP for your PIAF box. In the table below is the minimum ports you need port forwarded to get sip/iax calls to and from your PIAF. All of the rest are optional depending on what you want to do.
| Port Number | Protocol | Service | Should Forward | Rationale |
| 21 | tcp | ftp | No | Should never be forwarded from Router |
| 22 | tcp | ssh | No | Should never be forwarded from Router. Use a randomly assigned port for production machines |
| 69 | udp | tftp | No | Only of you have external hard phones that need tftp |
| 80 | tcp | http | No | Only of you want standard web access to front menu. Should really use alternate port |
| 443 | tcp | https | No | Use if you want secure https access to web menu. Not recommended you change this port |
| 4445 | tcp | fop | No | Use only if you want access to the fop from outside of your local network |
| 4569 | udp | iax2 | Yes | For IAX2 conversations |
| 5000-5082 | udp | sip | Yes | For SIP conversations |
| 5038 | tcp | AstMgr | No | * |
| 9001 | tcp | webmin | No | Use only if you want access to webmin from outside of your local network. Recommend use a random port for this or only access webmin from within your local network |
| 9022 | tcp | ssh* | No | Use only if you want access to ssh shell from outside of your local network. Recommend you use a random port for this |
| 9080 | tcp | http | No | Use only if you want access to the menu via http from outside of your local network. Recommend you use a random port for this |
| 10000-20000 | udp | sip | Yes | Required for SIP calls |
Putting it together
Anytime you make a change to a port you will have to do the following:
- Write the rules to forward the port from your router to your PIAF box. (This process is router dependant and beyond the scope of this website. RTFM) (This is only true if you wish to access this port/service from outside your local network)
- Using webmin ensure the ports are allowed to go into your PIAF box from the ports you just forwarded on your router. (main page - networking - Linux firewall)
- Ensure the correct configuration files are changes on your PIAF box and then the service(s) are restarted. (This process is process dependant and beyond the scope of this website. RTFM)
Using VNC Instruction Guide
Submitted by Admin on March 11, 2008 - 8:22pm.Overview
This manual will describe how to use VNC with your PBX in a Flash. You will have had to install Xwindows-KDE onto your PBX in a Flash prior to attempting to run VNC. The install procedure for that is located here.
Author
Tom King
License
Copyright Material Licensed to use and distribute but not to alter. If you wish to alter the material please contact the author directly.