Rock SE Server Configuration Get started
Download balenaetcher, and install.
Download putty, and install.
Download winscp, and install.
Ubuntu server, use this version Ubuntu 20 Server(Linux 4.4). file rockpi-4b-ubuntu-focal-server-arm64-20221109-1331-gpt.img.xz
Windows. I "Find" eller "Search" skriv: Hvis rocken bliver fundet. Kommer der et svar som: Hvis der kommer svar er der klar til at connecte med Putty. Start putty og..

Connect til rockpi-4b med Putty. Host Name:rockpi-4b
Port:22
Connection type:SSH/telnet
Ved at vælge save, kan man gemme denne session.
login as: rock
rock@rockpi-4b's password: rock

Sound config, expand filesystem, timezone e.t.c.

Find default speaker output.
Find Device [USB PnP Sound Device], da vil vil sætte Rocken til at bruge dette til afspiller når den starter op.:
card 2: Device [USB PnP Sound Device], device 0: USB Audio [USB Audio]

Here finding the soundcard it is called card 2. It´s the "2" there is importent and device 0. Used to set the default output(speaker) soundcard.
pcm "hw:2,0"

Find default microphone input.
Find Device [USB PnP Sound Device:
card 2: Device [USB PnP Sound Device], device 0: USB Audio [USB Audio]

Here finding the soundcard it is called card 2. It´s the "2" there is importent and device 0. Used to set the default input(microphone) soundcard.
pcm "hw:2,0"

The USB sound device can be made the default audio device by make a file named ".asoundrc" in /home/rock :
and in /etc/asound.conf

pcm.!default {
	type asym
	capture.pcm "mic"
	playback.pcm "speaker"
}
pcm.mic {
	type plug
	slave {
		pcm "hw:2,0"
	}
}
pcm.speaker {
	type plug
	slave {
		pcm "hw:2,0"
	}
}

Update Firmware.
Når man forsøger at update Rocken. Går den i ged??.
Løsningen er at update key filen.
Update key. Meddeles tilbage der mangler keys, skift 9B98116C9AA302C7 ud med dem der mangler.

Der kan nu updates.
Change password.

Set tim zone.

Set host name.
sudo nano /etc/hosts
Change rockpi-4b, to.
Give Rock permission to /home/rock or ~/.
Alsamixer.
Type "Alsamixer", select soundcard. Then adjust the mic & volume and exit.
Reboot.

Update CMake

SimpleBLE relies heavily on plenty of CMake functionality. So we have to update CMake to lastest version.
Check your version. # check latest release version. At this time this is 3.29.0
If yours to old?. First remove the old version.
Update system, Compile and install the new version.
Or install from pre compiled version?. After that, check version.
cmake --version

Backup newly Compiled Cmake vesion.
Extract CMake pre compiled version. And install from this. Time saver.
Check if soundcard settings works?.

############### Login to FreeDNS, set up subdomain(A Record), and IP address. ################
############### Install required certbot package and tools for DNS ################
############## Now create a file wwan0_sim7600.sh, contain bash script from file. ################
Change this line(6) to reflect the static IP to use. static_address="80.91.3.214"
cd ~
nano wwan0_sim7600.sh
Make it exe ready, and run it.
chmod u+x wwan0_sim7600.sh
./wwan0_sim7600.sh
If no output after run. Alles OK.

Create a cron job that run every minute. To check if IP addresse has changed?. Write this at the bottom of the file.
Check status of cron service.
############## Use dig command to check the DNS record ################ # It should return the (public) IP address of your server. If not fix it.

############## Install acme.sh ################

# After the installation, you can use sudo source .bashrc or just close/open your session to enable acme.sh bash completion.
# Or..Close current terminal and reopen again to make the alias take effect
# Login and generate for FREEDNS account
# Export FreeDNS userid and password in following variables...
# FREEDNS_User=user FreeDns email
# FREEDNS_Password=password
# login cookie is saved in acme account config file so userid / pw
# need to be set only when changed. # The default location for acme.sh to store certs is:
# /root/.acme.sh/doorbell.doordk.com/

############## Backup ################
# Backup acme.sh
############## Restore ################
# Restore as user rock
############### Upgarde and enable auto upgrade: ################
############## Update Certs ################
# All
# Single
############## Shows the subject and domain names in the csr. ################
############### Copy the relevant certificates to a location of your choice ################
# Make dir for certs
# Install to location
Back as user rock.
# Set group
# Set owner
# followed by
# Add our user to www-data group.
# Generate DH param Or copy an old one.
############## Edit account.conf ################ # You can get the dns_cookie by analyzing the saved cookie in your browser while logged in.
# Firefox: Webudvikler->Webconsole->Lagerplads->dns_cookie

Compile install libserialport
libserialport: cross-platform library for accessing serial ports.
backup compiled libserialport.
extract compiled libserialport.
Her er et modem test program Send "AT", recive "OK" i c++.
Example AT Modem Libserialport.

/dev/ttyUSB2 er et modems AT port.

					  
SerialClass *serial=NULL;	
serial=new SerialClass();
serial->set_port("/dev/ttyUSB2");
if( !serial->Start() ){
	std::cout << "error findig port? " << std::endl;
	letter = 'x';
}
					  
					

Når programmet kører tast "a" og Enter for test.
Sender "AT\r" til modemet, og forventer at få svaret "OK".
time_out=3; Giver modemet 3seconds max, Har modemet ikke svaret inden kommer en fejl meddelse "Time OUT????".
ellers "Hurray: expected: OK"
std::string send_val="AT\r";
std::string expected="OK";
serial->write(send_val,expected);

Her er header cpu.h PDU filen c++.
PDU header .h file.

Her er pdu.cpp PDU filen c++.
PDU .cpp file.

Her er et modem test program som sender en SMS i PDU format, i c++.
Når programmet kører tast "b" og Enter for test.
Example AT Modem Libserialport.

Når man sætter et USB device ind, får det en, som ovenfor "/dev/ttyUSB2".
Men det kan ske at den har fået denne adresse tilfældige adresse "/dev/ttyUSB4".
Og så virker programmet ikke mere. Men der en løsning "symlink".
Ved symlink forbinder man hardware id'et med et navn.
Som vist under menu'en SIM7600
Man bruger således simlink navnet til at finde adressen.
Som det ses er der givet symlink adressen "/dev/ttySIM02" til "AT" porten på modemet.
Koden her viser, hvordan man finder den rigtige adresse "/dev/ttyUSBX".

	
std::string ttyUSB_port="";					  
std::string ttySIM_port="/dev/ttySIM02";
std::string ret=ExecCmd("ls -l /dev/ttySIM0*");
int pos = ret.find(ttySIM_port);
if( pos > 0 ){
	// Copy substring after pos 
	std::string str = ret.substr(pos + 1);
	boost::algorithm::trim(str);

	std::vector strs;				
	boost::split(strs, str , boost::is_any_of("\n"));
	if( strs.size() > 0 ){
		//std::cout  << strs.size() << " str: " << strs[0] << std::endl;
		std::vector strs_1;				
		boost::split(strs_1, strs[0] , boost::is_any_of(" "));
		if( strs_1.size() > 0 ){
			ttyUSB_port=strs_1[strs_1.size()-1];
			boost::algorithm::trim(ttyUSB_port);
			ttyUSB_port="/dev/"+ttyUSB_port;
			//std::cout << " ttyUSB_port: " << ttyUSB_port << std::endl;
		}else{
			std::cout << "No serial PORT found" << std::endl;
			return 1;
		}
	}else{
		std::cout << "No serial PORT found" << std::endl;
		return 1;
	}
}else{
	std::cout << "No serial PORT found" << std::endl;
	return 1;
}

Boost Beast & minIni Boost asio beast compile install.
Vær opmærksom på at rocken går helt dø ved udpakning af boost_1_84_0.tar.gz, op til flere minutter.


Advanced_server_flex Test.
Now change the line #include "example/common/server_certificate.hpp" to---
#include "server_certificate.hpp"

Before we start testing Boost beast, we want to make the support for ini files.
minIni
minIni is a portable and configurable library for reading and writing ".INI" files.
Read the dokumentation at this site. To have the support for ini files, get the files for it.
Now make file door_server.ini, to store settings. nano ~/code/advanced/server-flex/build/assets/door_server.ini
# Add load certificate from files: Now change all of server_certificate.hpp to reflect this file.
Example server_certificate.html.

Now change all of CMakeLists.txt to reflect this file.
Example CMakeLists.txt.


To clean project you can simply recursively delete all files/directories within the build directory, for example:
But this clean everything, this is not always what we want?.
More work, but now we are in control?. Make a clean up file in the build directory.
nano clean.sh Now make it exe ready.
chmod u+x clean.sh
You can now run. Make index.html Here is a copy of index.html.

Run server_flex 0.0.0.0(root ip) 8080(Port) .(this directory) 1(how many threads)
Find servers ip adresse. Test. Go to your browser.

Install FFMPEG

Download the latest git build.
Find ffmpeg version folder At this time it is:
ffmpeg-git-20240301-arm64-static

Check if all is there.
Start using ffmpeg with the relative path to the binary.
Check for old version. If its show "ffmpeg:" there is not any ffmpeg at the system. We are all set.
If its show "ffmpeg: /usr/bin/ffmpeg". Then.
Do the same for ffprobe
Show the exe path for the system.
According to my shell's path I have exe files in /usr/local/bin.
Move the static binaries ffmpeg and ffprobe into the shell's path.
Check if its working?.
Make install Openh264
Install tools.

Compile Install Asterisk

Install dependencies
Download and compile, install.
sudo truncate -s 0 /etc/logrotate.d/asterisk
sudo nano /etc/logrotate.d/asterisk
**********************************************

/var/log/asterisk/debug /var/log/asterisk/console /var/log/asterisk/full /var/log/asterisk/messages /var/log/asterisk/*log {
        missingok
        rotate 15
        compress
        delaycompress
        notifempty
        size 2M
        create 640 asterisk asterisk
        sharedscripts
        postrotate
              /usr/sbin/asterisk -rx 'logger reload' > /dev/null 2> /dev/null
        endscript
}

**********************************************

# Install opus, for some reason menuselect option above does not working
# Set permisson and copy certificates for asterisk
sudo nano /etc/default/asterisk
uncomment the following two lines:
************************************

AST_USER="asterisk"
AST_GROUP="asterisk"

************************************

# Backup http.conf
Paste at the end of file
sudo nano /etc/asterisk/http.conf
************************************

enabled=yes
bindport=8088

;; tls certificados
tlsenable=yes
tlsbindaddr=0.0.0.0:8089
tlscertfile=/etc/asterisk/keys/fullchain.pem
tlsprivatekey=/etc/asterisk/keys/key.pem

************************************

# Backup pjsip.conf
Paste at the end of file
sudo nano /etc/asterisk/pjsip.conf
************************************

[general]
allowguest = no

[transport-udp]
type = transport
protocol = udp
bind = 0.0.0.0:5060
external_media_address = 80.91.3.214         ;; Public IP
external_signaling_address = 80.91.3.214     ;; Public IP
;local_net = 172.50.50.90/255.255.255.0          ;; Docker IP

[transport-wss]
type=transport
protocol=wss
bind=0.0.0.0
external_media_address = 80.91.3.214         ;; Public Ip
external_signaling_address = 80.91.3.214     ;; Public Ip
;local_net = 172.50.50.90/255.255.255.0          ;; Docker Ip

;;
;; 6000 UDP
;;

[6000]
type = aor
max_contacts = 1
remove_existing=yes

[6000]
type=auth
auth_type=userpass
password=1234
username=6000

[6000]
type = endpoint
transport = transport-udp
context = office-phones
disallow = all
;allow = !all,opus,ulaw,alaw,vp8,vp9
allow = !all,ulaw,alaw,h264,vp8
aors = 6000
auth = 6000
webrtc=no

;;
;; 7000 UDP
;;
[7000]
type = aor
max_contacts = 1
remove_existing=yes

[7000]
type=auth
auth_type=userpass
password=1234
username=7000

[7000]
type = endpoint
transport = transport-udp
context = office-phones
disallow = all
;allow = !all,opus,ulaw,alaw,vp8,vp9
allow = !all,ulaw,alaw,h264,vp8
aors = 7000
auth = 7000
webrtc=no

;;
;; 7001 Webrtc
;;
[7001]
type = aor
max_contacts = 1
remove_existing=yes

[7001]
type=auth
auth_type=userpass
password=1234
username=7001

[7001]
type = endpoint
transport = transport-wss   ;; important
context = office-phones
disallow = all
;allow = !all,opus,ulaw,alaw,vp8,vp9
allow = !all,ulaw,alaw,h264,vp8
aors = 7001
auth = 7001
dtls_auto_generate_cert=no  ;; important
webrtc=yes	            ;; important
force_rport=yes             ;; important 
direct_media=yes            ;; important

;;
;; 7002 Webrtc
;;
[7002]
type = aor
max_contacts = 1
remove_existing=yes

[7002]
type=auth
auth_type=userpass
password=1234
username=7002

[7002]
type = endpoint
transport = transport-wss   ;; important
context = office-phones
disallow = all
;allow = !all,opus,ulaw,alaw,vp8,vp9
allow = !all,ulaw,alaw,h264,vp8
aors = 7002
auth = 7002
dtls_auto_generate_cert=no  ;; important
webrtc=yes	            ;; important
force_rport=yes             ;; important 
direct_media=yes            ;; important

[webrtc-phones](!)
context=office-phones
transport=transport-wss
;allow=!all,opus,ulaw,alaw,vp8,vp9
allow = !all,ulaw,alaw,h264,vp8
webrtc=yes

************************************

# Backup extensions.conf Paste after [general]
sudo nano /etc/asterisk/extensions.conf
************************************

[office-phones]
exten => 6000,1,Dial(PJSIP/6000)
exten => 7000,1,Dial(PJSIP/7000)
exten => 7001,1,Dial(PJSIP/7001)
exten => 7002,1,Dial(PJSIP/7002)
same => n,Playback(hello-world)
same => n,Hangup()

************************************

# Backup modules.conf Paste at the end of file
sudo nano /etc/asterisk/modules.conf
************************************

noload = app_voicemail_imap.so
noload = app_voicemail_odbc.so
noload => res_config_ldap.so
load = res_crypto
load = res_http_websocket
load = res_pjsip_transport_websocket
load = codec_opus
load = res_srtp

************************************

# Backup rtp.conf Change and paste after [general]
sudo nano /etc/asterisk/rtp.conf
************************************

[general]
rtpstart=10000
rtpend=10099
icesupport=yes                      ;; important
strictrtp=no                        ;; important
stunaddr=stun.l.google.com:19302    ;; important

************************************

# Backup cel.conf Paste at the end of file
sudo nano /etc/asterisk/cel.conf
************************************

radiuscfg => /etc/radcli/radiusclient.conf

************************************

# Backup cdr.conf Paste at the end of file
sudo nano /etc/asterisk/cdr.conf
************************************

[radius]
radiuscfg => /etc/radcli/radiusclient.conf

************************************


If this error: Unable to connect to remote asterisk (does /var/run/asterisk/asterisk.ctl exist?). Run. And try again.


Activate fail2ban asterisk
This does a 18-days ban on the IP that performed the attack.
sudo nano /etc/fail2ban/jail.local
************************************

enabled = true
port     = 5060,5061
filter = asterisk
#action_  = %(default/action_)s[name=%(__name__)s-tcp, protocol="tcp"]
#%(default/action_)s[name=%(__name__)s-udp, protocol="udp"]
action = %(action_)s
logpath  = /var/log/asterisk/messages
findtime = 10800
maxretry = 3
bantime = 604800

************************************

Restart fail2ban/status.
# Configuring Firewall


# Starting Asterisk Use quit or exit to get out.

Check status.
#If On error,look in system filen.
#Backup in asterisk .conf files.

					
sudo cp /etc/asterisk/asterisk.conf /etc/asterisk/asterisk.bak && \
sudo cp /etc/asterisk/cdr.conf /etc/asterisk/cdr.bak && \
sudo cp /etc/asterisk/cel.conf /etc/asterisk/cel.bak && \
sudo cp /etc/asterisk/extensions.conf /etc/asterisk/extensions.bak && \
sudo cp /etc/asterisk/http.conf /etc/asterisk/http.bak && \
sudo cp /etc/asterisk/logger.conf /etc/asterisk/logger.bak && \
sudo cp /etc/asterisk/modules.conf /etc/asterisk/modules.bak && \
sudo cp /etc/asterisk/pjsip.conf /etc/asterisk/pjsip.bak && \
sudo cp /etc/asterisk/rtp.conf /etc/asterisk/rtp.bak

#Deploy asterisk .conf files.

					
sudo cp /home/rock/asterisk_conf/asterisk.conf /etc/asterisk/asterisk.conf && \
sudo cp /home/rock/asterisk_conf/cdr.conf /etc/asterisk/cdr.conf && \
sudo cp /home/rock/asterisk_conf/cel.conf /etc/asterisk/cel.conf && \
sudo cp /home/rock/asterisk_conf/extensions.conf /etc/asterisk/extensions.conf && \
sudo cp /home/rock/asterisk_conf/http.conf /etc/asterisk/http.conf && \
sudo cp /home/rock/asterisk_conf/logger.conf /etc/asterisk/logger.conf && \
sudo cp /home/rock/asterisk_conf/modules.conf /etc/asterisk/modules.conf && \
sudo cp /home/rock/asterisk_conf/pjsip.conf /etc/asterisk/pjsip.conf && \
sudo cp /home/rock/asterisk_conf/rtp.conf /etc/asterisk/rtp.conf

#Save asterisk .conf files for later use.

					
sudo cp /etc/asterisk/asterisk.conf /home/rock/asterisk_conf/asterisk.conf && \
sudo cp /etc/asterisk/cdr.conf /home/rock/asterisk_conf/cdr.conf && \
sudo cp /etc/asterisk/cel.conf /home/rock/asterisk_conf/cel.conf && \
sudo cp /etc/asterisk/extensions.conf /home/rock/asterisk_conf/extensions.conf && \
sudo cp /etc/asterisk/http.conf /home/rock/asterisk_conf/http.conf && \
sudo cp /etc/asterisk/logger.conf /home/rock/asterisk_conf/logger.conf && \
sudo cp /etc/asterisk/modules.conf /home/rock/asterisk_conf/modules.conf && \
sudo cp /etc/asterisk/pjsip.conf /home/rock/asterisk_conf/pjsip.conf && \
sudo cp /etc/asterisk/rtp.conf /home/rock/asterisk_conf/rtp.conf					

Backup asterisk .conf files for later use.
Download asterisk_conf_bak.tar.gz

Extract asterisk_conf_bak.
#remove

Check if modem sim7600G is present: If Showning:
*****************************************
Bus 007 Device 004: ID 1e0e:9001 Qualcomm / Option
*****************************************
Then QMI/RMNET network interface is enabled, default for sim7600.

Check for port assignment Shut show:
crw-rw---- 1 root dialout 188, 0 Apr 10 17:53 /dev/ttyUSB0
crw-rw---- 1 root dialout 188, 1 Apr 10 17:53 /dev/ttyUSB1
crw-rw---- 1 root dialout 188, 2 Apr 10 17:53 /dev/ttyUSB2
crw-rw---- 1 root dialout 188, 3 Apr 10 17:53 /dev/ttyUSB3
crw-rw---- 1 root dialout 188, 4 Apr 10 17:53 /dev/ttyUSB4
Interface number
0 USB serial Diagnostic Interface
1 USB serial GPS NMEA Interface
2 USB serial AT port Interface
3 USB serial Modem port Interface
4 USB serial USB Audio Interface
Have a ethernet interface. Not USB
5 Net wwan interface

Thise ports can change name, after reboot etc.
Make:
/dev/ttySIM00 point_to -> ttyUSB0
/dev/ttySIM01 point_to -> ttyUSB1
/dev/ttySIM02 point_to -> ttyUSB2
/dev/ttySIM03 point_to -> ttyUSB3
/dev/ttySIM04 point_to -> ttyUSB4
Assign fixed device name to USB port.
Output:
idVendor 0x1e0e Qualcomm / Option
idProduct 0x9001
iProduct 2 SimTech, Incorporated
iSerial 3 0123456789ABCDEF

Create Symlink:
If iSerial is 0, omit it.
SUBSYSTEM=="tty", ATTRS{idVendor}=="1e0e", ATTRS{idProduct}=="9001", SYMLINK+="ttySIM%E{ID_USB_INTERFACE_NUM}"
else
SUBSYSTEM=="tty", ATTRS{idVendor}=="1e0e", ATTRS{idProduct}=="9001", SYMLINK+="ttySIM%E{ID_USB_INTERFACE_NUM}", ATTRS{serial}=="0123456789ABCDEF"

Save, Load the new rule:

Or reboot:

Verify this works:

Install minicom
Commands minicom
close minicom
echo on/off
Problems minicom
Start minicom on the AT interface
AT+CFUN? Check if active?.
AT+CFUN=1 for active and
AT+CFUN=0 for suspend
Make it active, if not
AT+CFUN=1

AT+IPR? Check baudrate
# baudrate 1200, 2400, 4800, 9600, 19200, 38400, 57600, 115200. "0" is auto
AT+IPR=115200 Set baudrate

AT+CGDCONT? Check APN
AT+CGDCONT=1,"IP","simstaticip.com" Set APN

SIM7600 Module works in wan mode by default 1, lan mode 0.
AT+CLANMODE? Check the current mode using.
AT+CLANMODE=1 Set sim7600 in wan mode

at+cgpaddr=1 Check if ISP has given sim7600 an IP addresse?.
If NOT "Houston we have problem???".

By default the SIM7600 PID is 9001 and the PID configuration is 9001:Diag, NMEA, At, Modem, Audio, Rmnet.
AT+CUSBPIDSWITCH? Check the current PID value.
If the response is 9001, no need to change the mode or if it is different PID value you can change it with.
AT+CUSBPIDSWITCH =9001,1,1 Change the PID to 9001.

AT+CSQ Network signal quality query, return signal value
0 (minimum, =< -113dBm) to 31 (maximum, >= -51 dBm)

AT+CNUM Query the phone number (not all SIM cards support this command), but sim7600 do

AT+CSCA? Get SMSC adresse
AT+CSCA="+4540590000",145 Set SMSC adresse

AT+COPS? Query the current operator, the operator information will be returned after normal networking

Install dependencies.
Setup nmcli as admin for modem connetion. If not "/org/freedesktop/ModemManager1/Modem/1 [QUALCOMM INCORPORATED] SIMCOM_SIM7600G-H" or similar.
"Houston we have problem???".
If we have the string, look for the number, after /Modem/x, we have to remember this number.

We will use this number. To get information about the sim7600 number x. Here, I have the number x=1.
Enable It.
Set nmcli to handle modem USB connection. The name ifname(cdc-wdm0) is importent, as well the APN(simstaticip.com).
Run now. And hopefully you got a IP address from your ISP provider??;

Reboot.
Run after reboot, and check that you got a IP address. And hopefully you got a IP address from your ISP provider?, You ar all done.

Check. Ping google.com via interfacet "wwan0" And hopefully you got a response.

APN Hotspot Check the interfaces available in our system using iwconfig: wlan0, show os it is a wireless extensions.
Check that our Wi-Fi card wlan0 supports AP mode: Response: WIFI-PROPERTIES.AP: yes.
wlan0 is suppoted.

Add dns=dnsmasq as showed:
sudo nano /etc/NetworkManager/NetworkManager.conf
Need a DHCP server installed (e.g. dnsmasq). Install dnsmasq and stop,disable it:
Reboot:

To create an access point with the name "door_spot" and a password "spotHallo" run: Response:
Connection 'WIFI_AP' (68d7d569-9982-4c31-a8c8-de780de273f1) successfully added.
Connection successfully activated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/5)
Check for WiFi networks. A new network "door_spot" is add.

See and edit this files WiFi configuration can bee done as:
Setup forwarding. Remove "#" in front off liniie.
sudo nano /etc/sysctl.conf
Add 1, to /proc/sys/net/ipv4/conf/all/forwarding.
sudo nano /proc/sys/net/ipv4/conf/all/forwarding
Add 1, to /proc/sys/net/ipv4/ip_forward.
sudo nano /proc/sys/net/ipv4/ip_forward
Restart NetworkManager.

See metric
Disable gateway,metric on interface.
Set metric
To have APN to give internet accesses over eth0.
To have APN to give internet accesses over wwan0.

collapse_11

collapse_12

collapse_13

collapse_14

collapse_15

collapse_16

linphonec & linphonecsh

Check for old versions
extract linphone
backup linphone
Get version
Start Linphone. You will immediately receive a error that reads:
port 5060: Address already in use
That is, in fact, exactly what is happening. The standard communication
channel for the SIP protocol is UDP port 5060, and it's already in use by our
SIP Asterisk server. Let's tell Linphone to use port 5062 with this command:
Now login, first time. Linphone will now remember you.
Select what audio device to use for phone calls:
Select what video device to use for phone calls:
Disable all codecs that are not PCMU or PCMA:
Video codecs:
All the settings that you've made will be saved to /root/.linphonerc

Important to register to sip server.

You are now insite the application linphone. Now type "help" or "help advanced". To get out type "quit".
Output help
Commands are:
---------------------------
help Print commands help.
answer Answer a call
autoanswer Show/set auto-answer mode
call Call a SIP uri or number
calls Show all the current calls with their id and status.
call-logs Calls history
camera Send camera output for current call.
chat Chat with a SIP uri
conference Create and manage an audio conference.
duration Print duration in seconds of the last call.
firewall Set firewall policy
friend Manage friends
ipv6 Use IPV6
mute Mute microphone and suspend voice transmission.
nat Set nat address
pause pause a call
play play a wav file
playbackga Adjust playback gain.
proxy Manage proxies
record record to a wav file
resume resume a call
soundcard Manage soundcards
stun Set stun server address
terminate Terminate a call
transfer Transfer a call to a specified destination.
unmute Unmute microphone and resume voice transmission.
webcam Manage webcams
quit Exit linphonec
---------------------------
Type ' help ' for more details or
' help advanced' to list additional commands.

Output help advanced
Advanced commands are:
---------------------------
codec Audio codec configuration
vcodec Video codec configuration
ec Echo cancellation
el Echo limiter
nortp-on-audio-mute Set the rtp_no_xmit_on_audio_mute configuration parameter
vwindow Control video display window
pwindow Control local camera video display (preview window)
snapshot Take a snapshot of currently received video stream
preview-snapshot Take a snapshot of currently captured video stream
vfureq Request the other side to send VFU for the current call
states Show internal states of liblinphone, registrations and calls, according to linphonecore.h definitions
register Register in one line to a proxy
unregister Unregister from default proxy
status Print various status information
ports Network ports configuration
param parameter set or read as normally given in .linphonerc
speak Speak a sentence using espeak TTS engine
staticpic Manage static pictures when nowebcam
identify Returns the user-agent string of far end
ringback Specifies a ringback tone to be played to remote end during incoming calls
redirect Redirect an incoming call
zrtp-set-verified Set ZRTP SAS verified.
zrtp-set-unverified Set ZRTP SAS not verified.
---------------------------
Type 'help ' for more details.

At the rock's command-line type, to see linphones config file.

sudo cat /root/.linphonerc

Linphonecsh

Linphonecsh is a small utility to send basic commands to a linphonec (console mode linphone) process.
Unlike linphonec, linphonecsh does not wait commands from standard input: it takes the command from its arguments
and sends it using unix pipe to a linphonec process started in daemon mode.
The motivation for this tool is for example to simply execute voip calls from scripts, web-servers, or javascript web pages.

Allways init before use.

sudo linphonecsh init -a -C -c /root/.linphonerc -d 6 -l /home/rock/linphone_log.txt

linphonec running in daemon mode.

sudo linphonecsh -h

linphonecsh generic
The resulting linphonec daemon does not read or write any configuration file. Use the -c to read from configuration file.

sudo linphonecsh init -c ~/.linphonerc

linphonecsh commands.

sudo linphonecsh generic "help ports"
sudo linphonecsh generic "ports" //prints current used ports.
sudo linphonecsh generic "ports sip 5062" //Sets the sip port to 5062.

sudo linphonecsh generic "help soundcard"
sudo linphonecsh generic "soundcard list" //list all sound devices.
sudo linphonecsh generic "soundcard show" //show current sound devices configuration.
sudo linphonecsh generic "soundcard use (index)" //select a sound device to use.

sudo linphonecsh generic "help codec"
sudo linphonecsh generic "codec list" //list audio codecs
sudo linphonecsh generic "codec enable (index)" //enable available audio codec
sudo linphonecsh generic "codec disable (index)" //disable audio codec

sudo linphonecsh generic "help vcodec"
sudo linphonecsh generic "vcodec list" //list video codecs
sudo linphonecsh generic "vcodec enable (index)" //enable available video codec
sudo linphonecsh generic "vcodec disable (index)" //disable video codec

sudo linphonecsh generic "help camera"
sudo linphonecsh generic "camera on" //allow sending of local camera video to remote end.
sudo linphonecsh generic "camera off" //disable sending of local camera's video to remote end.

sudo linphonecsh generic "help stun"
sudo linphonecsh generic "stun" //show stun settings.
sudo linphonecsh generic "stun (addr)" //set stun server address.

sudo linphonecsh generic "help firewall"
sudo linphonecsh generic "firewall" //show current firewall policy.
sudo linphonecsh generic "firewall none" //use direct connection.
sudo linphonecsh generic "firewall nat" //use nat address given with the 'nat' command.
sudo linphonecsh generic "firewall stun" //use stun server given with the 'stun' command.
sudo linphonecsh generic "firewall ice" //use ice.
sudo linphonecsh generic "firewall upnp" //use uPnP IGD.

sudo linphonecsh generic "help webcam"
sudo linphonecsh generic "webcam list" //list all known devices.
sudo linphonecsh generic "webcam use (index)" //select a video device.

sudo linphonecsh generic "help autoanswer"
sudo linphonecsh generic "autoanswer" //show current autoanswer mode
sudo linphonecsh generic "autoanswer enable" //enable autoanswer mode
sudo linphonecsh generic "autoanswer disable" //disable autoanswer mode

sudo linphonecsh generic "status autoanswer"
sudo linphonecsh generic "status hook"
sudo linphonecsh generic "status register"

sudo linphonecsh generic "register sip:username@doorbell.doordk.com sip:doorbell.doordk.com password"

Allways exit.

sudo linphonecsh exit

ps aux | pgrep linphonec

If showing linphonec --pipe. linphonec is running.

Test program c++.
Look at c++ linphone.

Download a c++ linphone program to compile.
NB. Uses MiniIni.
Function init_linphone(), shows how til initialize /root/.linphonerc before register.

wget https://blohm.com/wp-content/themes/blohm-child/page-templates/rock/linphone/files/linphone.cpp

Problems linphonec

sudo killall -9 linphonec

Links

Compile Install Linphone(https://wiki.linphone.org/xwiki/wiki/public/view/Linphone/Linphone%20and%20Raspberry%20Pi/).

Establishing a Connection to APNs

Firebase Browser Push Notification

Firebase Android Push Notification

Firebase IOS Push Notification

Install iptables.

delete old configuration, if any.
Flush all the rules in filter and nat tables
delete all chains that are not in default filter and nat table, if any.
cd ~
nano reset_iptabeles.sh
*********************************

#!/bin/bash
# IPv6

##
## set default policies to let everything in
ip6tables --policy INPUT   ACCEPT;
ip6tables --policy OUTPUT  ACCEPT;
ip6tables --policy FORWARD ACCEPT;

##
## start fresh
ip6tables -Z; # zero counters
ip6tables -F; # flush (delete) rules
ip6tables -X; # delete all extra chains

# IPv4

## 
## set default policies to let everything in
iptables --policy INPUT   ACCEPT;
iptables --policy OUTPUT  ACCEPT;
iptables --policy FORWARD ACCEPT;

##
## start fresh
iptables -Z; # zero counters
iptables -F; # flush (delete) rules
iptables -X; # delete all extra chains

# delete old configuration, if any
# Flush all the rules in filter and nat tables
iptables --flush             
iptables --table nat --flush
		   
# delete all chains that are not in default filter and nat table, if any
iptables --delete-chain    
iptables --table nat --delete-chain

chmod u+x reset_iptabeles.sh
*********************************

UFW setup.

# Install UFW, setp rules.

Fail2ban setup.

# Install fail2ban sudo systemctl restart fail2ban
sudo systemctl status fail2ban

# make jail.local
sudo nano /etc/fail2ban/jail.local
******************************************

ignoreip = 127.0.0.1/8 ::1 80.91.3.214 10.42.0.0/24 192.168.1.0/24	#92
bantime = 1d		#101 "bantime" is the time that a host is banned 10m=10minutter 1d=1dag.
findtime = 10m		#105 A host is banned if it has generated "maxretry" during the last "findtime" 10m=10minutter
maxretry = 3 		#108 maxretry the maximum number of failures before the IP is blocked.
					

******************************************

# Test your configuration
# See the log
sudo cat /var/log/fail2ban.log
# clear the log
sudo truncate -s 0 /var/log/fail2ban.log

# Fail2ban ships with a command-line tool named fail2ban-client
sudo fail2ban-client version
sudo fail2ban-client -h

# check status
sudo fail2ban-client status

# Ban an IP address
sudo fail2ban-client set sshd banip 23.34.45.56

# Unlocking an IP address
sudo fail2ban-client set sshd unbanip 125.124.221.121

# To activate a rule, use its name from the configuration file and the command:
sudo fail2ban-client add sshd

# Then start it.
sudo fail2ban-client start sshd

# status of jail sshd
sudo fail2ban-client status sshd

SMS Server Setup

Update controller.
Check om der er et GSM module. Hvis ikke følg anvisningerne

Under menu'en SIM7600.

Se assignment.

Install Under menu'en Libserialport.

Install Under menu'en Boost C++.

collapse_24