First I would like to say thank you to the Originators and Participants in this and other PBXIAF sites. Without these resources I would not be having near as much success as I have with Asterisk and SIP PBX's.
Also if I am out of form here, please excuse my ignorance, and slap my hand, as this is the first "support forum" I have ever participated in.
Some background on me: I am a 50+ year old self employed low voltage contractor.. That is to say I install Data & Voice Wiring, Windows Servers, Windows Workstations, Background Music, Whole house Automation, etc... i like to think of myself as "One-Stop-Technology" shopping for your new business start up. My core clientele are small to mid-size Doctor and Dental offices. Many in my client base find merging of resources necessary to be competitive, so many doctors are running more than 1 office and dividing time between locations. Merging of the "networks and communication" for these offices is desired to avoid duplication of labor. Consequently I have been pushed into wide area networking of data and phone systems.
What led me here: Recently my phone systems manufacturer of choice was bought out by one of the big name conglomerates. I have 5 locations using one of their newest (post merger) offerings which is a hybrid PBX with some IP capability that allows networking of multiple sites. Long story shortened... Networking works fine... Just cant hear the conversation coming through the analog CO trunks. I've stopped selling them... Something inside the "Box" appears to be distorting the voice-path to the point that any background noise, "Sidetone" in interconnect speak, renders the caller VERY difficult to hear. I have the exact same complaint on all 5 locations, located in 5 different towns. Yes I have checked the lines in all 5 locations, voltage, loop current, etc.. The analog CO lines are fine... Most are textbook. I'm convinced the manufacturer has designed a lemon.. Lucky me...
My first challenge will to be to do a warranty replacement of systems in two locations that are networked. The "No-1" location has 16 extensions with 5 analog trunks. The "No-2" location has 8 extensions with 3 analog trunks. They share 4 IP trunks that are point to point from locations 1 to 2. Both locations have a range of static WAN IP addresses, with no VPN between locations.
As you've guessed I am changing brands...Asterisk will no doubt do the job. Mostly overkill. I have been working on learning PBXIAF by building two systems on the bench and using them in my own office. I have installed PBXIAF Bronze as per website recommendations. I have found Grandstream phones to interface and work out of the box. I have found Aastra phones (6757i) to be harder to configure, but for now it seems to be staying connected. (Had to change a timer to get it to stick)..Thank you to the geniuses that made FreePBX and Linux Webmin, as i would not have succeeded without them..
I applaud Ward Mundy for his attention to security. (My reason for choosing PBXIAF) I agree that any computer system that touches the internet MUST be hardened. (wish I could do that with windows)
So here is question 1: I will be using analog trunks. Should I install a hardware VPN from location 1 to location 2, so as to keep both of the Asterisk boxes completely behind the firewall ? This would also necessitate VPN connections from the Doctors homes to the office. This would seem to be the most secure setup. I do see that GeekUno has found a way to connect to SIP trunk providers outbound through NAT, but for inbound extensions, the only way I see is to open a port for sip. Anyone have experience with an exposed SIP port? Is PBXIAF / Centos secure enough to keep the hackers out with just strong passwords?
Question 2: I think the SIP port could be moved to a "Non-Standard" port to slow down hack attempts, but UDP ports 10,000 to 20,000 also get opened, and the docs say not to relocate them because of "performance" issues. Should I be concerned? Makes me kinda nervous opening this many ports, even if it is a Centos Box... Can the UDP range also be relocated ?
Question 3: Can someone send me the link syntax for centos, to wget the current Aastra 57i firmware from their site. WM's article "The World's Best Asterisk Phone" is dated and the links in the article point to files that are zero bytes. I can get to them in a windows browser and download the newer files to windows, but the same links do not work in a wget on centos. Newbie frustration. I guess I could install samba and move the downloaded files that way, but that seems like cheating...
Question 4: To my ears (that have a 25% hearing loss), the Grandstream phones seem to have just as good a sound quality as the Aastra phone. Short of me getting WM's fancy features working on the Aastra 57i, I do not see an advantage to spending double on the 57i. Epically when this will be a warranty replacement,(Upgrade ?). I'm not used to having 200+ options to choose from.. With prices ranging from $59 to $800.. How is an installer to know ? Most of my clients just want to be able to hear the caller and have a "pretty" phone on their desk! Cisco has name recognition, but do they play well with PBXIAF ? Ultimately I will present a few brands to the customer and let the customer decide. Based on web research, I have tried the Aastra 57i and the Grandstream GXP2000 and the GXP280. Does anyone have a broad experience with different phone instruments that could lend their 2 cents on phone choices?
Question 5: Is there anyone interested in doing paid phone / remote support for this newbie? When/If I jump into this and install "Live" systems, my clients will want it to work.. NOW... I will do a bench install of the software, and will pre-configure and test the servers before I deploy them. Problems in the field will require a FAST resolution. As well as compensating for my lack of knowledge. Yes I know I can buy $150/hr professional support, but that is hard to absorb seeing that I only charge $90/hr for myself ! (I am located in Michigan, which has yet to crawl out of the recession) I could barter with SIP phones that I will have remaining in inventory! Anyone Interested ?
Question 6: Does anyone know of anyone that will sell a custom configuration as a backup/restore...? Seems that there might be a market for someone to cater to people like me that are transitioning into IP/Computer based phones from the interconnect market that are working for paying customers. I know that I know just enough to be dangerous.. and would be willing to pay for an "expertly" done custom configuration that included a 30-day install-support pack. Having someone covering my lack of knowledge would give me a warm fuzzy confidence that I do not currently have. Is there anything like this out there short of buying a whole "canned" configured box, that I would have to custom configure anyway?
Observation 1: (this might better be posted elsewhere ?) If you install PBXIAF bronze AND use Digum TDM400p FXO cards, you will need to manually run dahdi_genconf from the command line after the PBXIAF install and then reboot. Took me 2 days, 4 loads, on 2 machines, to realize that PBXIAF was not using Zap-tel drivers, and another day to find the dadhi configuration files were missing.. DaaaaaaDhi... Yes, you Linux guru's can laugh. I chuckle NOW too.. I AM getting re-acquainted with the term Newbie. Been a while since I had to print hundreds of pages of Doc's and actually study them. This tip could save someone else hours of hunting...
Not that this is the end to my list of questions... But I fear to be banned from this forum for being too wordy... and too newbie... So I will thank you in advance, I will sit and take whatever flak, (er suggestions) you choose to shoot my way... I only ask that you be kind, as I do not move, (or think) as fast as I used to... Now that I have joined the over 50 crowd ! (At least now I have an Excuse!) Thanks !
Mike Horwood
Owner HCCLLC
Also if I am out of form here, please excuse my ignorance, and slap my hand, as this is the first "support forum" I have ever participated in.
Some background on me: I am a 50+ year old self employed low voltage contractor.. That is to say I install Data & Voice Wiring, Windows Servers, Windows Workstations, Background Music, Whole house Automation, etc... i like to think of myself as "One-Stop-Technology" shopping for your new business start up. My core clientele are small to mid-size Doctor and Dental offices. Many in my client base find merging of resources necessary to be competitive, so many doctors are running more than 1 office and dividing time between locations. Merging of the "networks and communication" for these offices is desired to avoid duplication of labor. Consequently I have been pushed into wide area networking of data and phone systems.
What led me here: Recently my phone systems manufacturer of choice was bought out by one of the big name conglomerates. I have 5 locations using one of their newest (post merger) offerings which is a hybrid PBX with some IP capability that allows networking of multiple sites. Long story shortened... Networking works fine... Just cant hear the conversation coming through the analog CO trunks. I've stopped selling them... Something inside the "Box" appears to be distorting the voice-path to the point that any background noise, "Sidetone" in interconnect speak, renders the caller VERY difficult to hear. I have the exact same complaint on all 5 locations, located in 5 different towns. Yes I have checked the lines in all 5 locations, voltage, loop current, etc.. The analog CO lines are fine... Most are textbook. I'm convinced the manufacturer has designed a lemon.. Lucky me...
My first challenge will to be to do a warranty replacement of systems in two locations that are networked. The "No-1" location has 16 extensions with 5 analog trunks. The "No-2" location has 8 extensions with 3 analog trunks. They share 4 IP trunks that are point to point from locations 1 to 2. Both locations have a range of static WAN IP addresses, with no VPN between locations.
As you've guessed I am changing brands...Asterisk will no doubt do the job. Mostly overkill. I have been working on learning PBXIAF by building two systems on the bench and using them in my own office. I have installed PBXIAF Bronze as per website recommendations. I have found Grandstream phones to interface and work out of the box. I have found Aastra phones (6757i) to be harder to configure, but for now it seems to be staying connected. (Had to change a timer to get it to stick)..Thank you to the geniuses that made FreePBX and Linux Webmin, as i would not have succeeded without them..
I applaud Ward Mundy for his attention to security. (My reason for choosing PBXIAF) I agree that any computer system that touches the internet MUST be hardened. (wish I could do that with windows)
So here is question 1: I will be using analog trunks. Should I install a hardware VPN from location 1 to location 2, so as to keep both of the Asterisk boxes completely behind the firewall ? This would also necessitate VPN connections from the Doctors homes to the office. This would seem to be the most secure setup. I do see that GeekUno has found a way to connect to SIP trunk providers outbound through NAT, but for inbound extensions, the only way I see is to open a port for sip. Anyone have experience with an exposed SIP port? Is PBXIAF / Centos secure enough to keep the hackers out with just strong passwords?
Question 2: I think the SIP port could be moved to a "Non-Standard" port to slow down hack attempts, but UDP ports 10,000 to 20,000 also get opened, and the docs say not to relocate them because of "performance" issues. Should I be concerned? Makes me kinda nervous opening this many ports, even if it is a Centos Box... Can the UDP range also be relocated ?
Question 3: Can someone send me the link syntax for centos, to wget the current Aastra 57i firmware from their site. WM's article "The World's Best Asterisk Phone" is dated and the links in the article point to files that are zero bytes. I can get to them in a windows browser and download the newer files to windows, but the same links do not work in a wget on centos. Newbie frustration. I guess I could install samba and move the downloaded files that way, but that seems like cheating...
Question 4: To my ears (that have a 25% hearing loss), the Grandstream phones seem to have just as good a sound quality as the Aastra phone. Short of me getting WM's fancy features working on the Aastra 57i, I do not see an advantage to spending double on the 57i. Epically when this will be a warranty replacement,(Upgrade ?). I'm not used to having 200+ options to choose from.. With prices ranging from $59 to $800.. How is an installer to know ? Most of my clients just want to be able to hear the caller and have a "pretty" phone on their desk! Cisco has name recognition, but do they play well with PBXIAF ? Ultimately I will present a few brands to the customer and let the customer decide. Based on web research, I have tried the Aastra 57i and the Grandstream GXP2000 and the GXP280. Does anyone have a broad experience with different phone instruments that could lend their 2 cents on phone choices?
Question 5: Is there anyone interested in doing paid phone / remote support for this newbie? When/If I jump into this and install "Live" systems, my clients will want it to work.. NOW... I will do a bench install of the software, and will pre-configure and test the servers before I deploy them. Problems in the field will require a FAST resolution. As well as compensating for my lack of knowledge. Yes I know I can buy $150/hr professional support, but that is hard to absorb seeing that I only charge $90/hr for myself ! (I am located in Michigan, which has yet to crawl out of the recession) I could barter with SIP phones that I will have remaining in inventory! Anyone Interested ?
Question 6: Does anyone know of anyone that will sell a custom configuration as a backup/restore...? Seems that there might be a market for someone to cater to people like me that are transitioning into IP/Computer based phones from the interconnect market that are working for paying customers. I know that I know just enough to be dangerous.. and would be willing to pay for an "expertly" done custom configuration that included a 30-day install-support pack. Having someone covering my lack of knowledge would give me a warm fuzzy confidence that I do not currently have. Is there anything like this out there short of buying a whole "canned" configured box, that I would have to custom configure anyway?
Observation 1: (this might better be posted elsewhere ?) If you install PBXIAF bronze AND use Digum TDM400p FXO cards, you will need to manually run dahdi_genconf from the command line after the PBXIAF install and then reboot. Took me 2 days, 4 loads, on 2 machines, to realize that PBXIAF was not using Zap-tel drivers, and another day to find the dadhi configuration files were missing.. DaaaaaaDhi... Yes, you Linux guru's can laugh. I chuckle NOW too.. I AM getting re-acquainted with the term Newbie. Been a while since I had to print hundreds of pages of Doc's and actually study them. This tip could save someone else hours of hunting...
Not that this is the end to my list of questions... But I fear to be banned from this forum for being too wordy... and too newbie... So I will thank you in advance, I will sit and take whatever flak, (er suggestions) you choose to shoot my way... I only ask that you be kind, as I do not move, (or think) as fast as I used to... Now that I have joined the over 50 crowd ! (At least now I have an Excuse!) Thanks !
Mike Horwood
Owner HCCLLC
Phone System 