I am brand new to FreePBX. This week I installed a FreePBX 17 virtual machine in Proxmox.
I registered two Yealink T58 phones.
I registered one Zoiper soft phone on an iPhone.
No issues so far but then I installed the Zoiper soft phone app on a Pop!_OS (Debian based) computer. This is the main computer I work from. Not only was I not able to get the soft phone working but I somehow lost access to the web GUI (tested on Firefox, Chrome, DuckDuckGo).
I can access the web GUI from another Win11 computer.
I uninstalled Zoiper from the Pop!_OS machine but still no FreePBX web gui.
What happened?
When I log into the Proxmox console I see that when I log in to FreePBX it says in Red
“NOTICE! You have 5 notifications! Please log in to the UI to see them!”
I suspect you have Zoiper misconfigured (port, password, etc.) on the Pop!_OS system and the FreePBX firewall has locked your IP address out due to too many invalid login attempts.
I agree. I know Zoiper is misconfigured. I wanted to log back in to FreePBX to fix Zoiper. That is when I realized I was not able to log in to it anymore. Later I realized I could log in to Free PBX from a Win11 pc.
I uninstalled Zoiper in Terminal with the following command
sudo apt purge zoiper5
It gave me the following response:
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
E: Unable to locate package zoiper5
I will try to get Zoiper properly uninstalled and post if that fixed it.
Then, I logged in to FreePBX from a different PC (ip addr) and in Connectivity → Firewall → Intrustion Detection.
(Thanks Stewart1)
I saw that the IP address was banned and clicked on the icon to unban it and whitelist it. I thought this would stop it from future banning.
I reinstalled Zoiper5 and to my surprise my old settings were back in the fresh Zoiper5 install and my IP was immediately banned again.
I removed the old settings from Zoiper5.
Then I logged in to FreePBX from the other PC again and found that my IP addr was banned again! clicked on the icon to unban it and whitelist it.
Then I followed the instructions here to set up Zoiper5 properly.
The intrusion detection itself is broken, there is no way to whitelist subnets that works. In older versions of FreePBX the intrusion detection by itself whitelisting of subnets does work.
The only 3 ways I have found to deal with this problem are:
turn off intrusion detection and keep it off.
Turn on the FreePBX firewall and configure it which then overrides the intrusion detection. The firewall does properly whitelist networks.
Statically assign ip’s to all phones and whitelist the host ip’s.
In my opinion I generally have other stuff on my network which is less securable than a PBX so I find it much easier to secure my network and turn off intrusion detection on the PBX.