Problem with NGINX and HTTPS - BBB 2.0 Ubuntu 16.04 LTS vserver

[Carloss Boss]

Hello guys,

I'm not very into this all, but I did try my best so fahr. I'm running BBB 2.0(beta) on a Ubuntu 16.04 LTS root server (more then enough ram, more then enough cpu).

At first I installed BBB 1.1, and after trying it out a little bit without configuring for https protocol and setting up ssl, I upgraded to 2.0. This went well pretty good.

Now I just started to follow along to the instructions provided and am stuck. When restarty the server via "sudo bbb-conf --restart" I'm getting this:

# IP does not match:

#                           IP from ifconfig: 81.***.***.134

#   /etc/nginx/sites-available/bigbluebutton: vorlesung.*******.de

# Warning: API URL IPs do not match host:

#

#                                IP from ifconfig: 81.***.***.134

#  /var/lib/tomcat7/webapps/demo/bbb_api_conf.jsp: vorlesung.********.de

Restarting BigBlueButton 2.0.0-beta ...

Stopping BigBlueButton

Starting BigBlueButton

Job for nginx.service failed because the control process exited with error code. See "systemctl status nginx.service" and "journalctl -xe" for details.

Job for freeswitch.service failed because the control process exited with error code. See "systemctl status freeswitch.service" and "journalctl -xe" for details.

** Potential problems described below **

# IP does not match:

#                           IP from ifconfig: 81.***.***.134

#   /etc/nginx/sites-available/bigbluebutton: vorlesung.********.de

# Warning: API URL IPs do not match host:

#

#                                IP from ifconfig: 81.***.***.134

#  /var/lib/tomcat7/webapps/demo/bbb_api_conf.jsp: vorlesung.**********.de

# Not running:  Nginx

# Warning: The voice application may not have registered with the sip server.

#   Try running:

#

#      sudo bbb-conf --clean

#

....................

# Error: Could not connect to the configured hostname/IP address

#

#    https://vorlesung.***********.de/

#

# If your BigBlueButton server is behind a firewall, see FAQ.

# Warning: The setting of <internal_ip> for bbb.sip.app.ip in

#

#    /usr/share/red5/webapps/sip/WEB-INF/bigbluebutton-sip.properties

#

# does not match the local IP address (81.***.***.134).

# (This is OK if you've manually changed the values to an external

# FreeSWITCH server.)

# Error: FreeSWITCH is listening on IP address 81.***.***.134 for SIP calls, but

# The IP address (<internal_ip>) set bbb.sip.app.ip.

#

# Warning: The API demos are installed and accessible from:

#

#    https://vorlesung.********.de/demo/demo1.jsp

#

# These API demos allow anyone to access your server without authentication

# to create/manage meetings and recordings. They are for testing purposes only.

# If you are running a production system, remove them by running:

#

#    sudo apt-get purge bbb-demo

# Warning: The client self check is installed and accessible from:

#

#    https://vorlesung.*******.de/check

#

# Error: Unable to reach default URL for presentation:

#

#    https://vorlesung.*******.de/default.pdf

#

# Check value for beans.presentationService.defaultUploadedPresentation in

#   /var/lib/tomcat7/webapps/bigbluebutton/WEB-INF/classes/bigbluebutton.properties

I did try to open my hostname in browser, no success...

Nginx also doesn't seem to like what I did. Does anybody have an idea what could have gone wrong? It must have something to do with either the ssl certificate or the setup of nginx for https and ssl. It did work out before I did the https stuff, so the domain should be working fine.

I hope I inluded all the Important Information, and thank you very much in advance whoever replies :)

Best regards

Carl

Note: Freeswitch was always complaining in the potential problems section before all this mambo jambo started (sry for censoring ip adress and hostname)

[Fred Dixon]

Hi there,

For the first place to look, check into the nginx log at

  /var/log/nginx/errors.log

for clues on the error -- it might just be a syntax error in your 

  /etc/nginx/sites-available/bigbluebutton

file.

Regards,... Fred

--
You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsub...@googlegroups.com.
To post to this group, send email to bigbluebutton-setup@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

--

BigBlueButton Developer

http://bigbluebutton.org/

@bigbluebutton

[Carloss Boss]

Thank you very much! Nginx is running again. Stupid me! My Terminal replaces the last displayed character with a $-sign, looks like there was one that didn't belong there... Thank you very very much for taking your time just for that...

I love your project so far, thank you working on such a great Project and letting me use it for free!

Best Regards Carl

[Carloss Boss]

I'm really sorry but it looks like I still do have another question...

FreeSWITCH is no running, and I'm getting error code 1002. But when looking into journalctl -xe I'm getting something like h27***13.stratoserver.net bbb-fsesl-akka[4760]:         at org.j which is not my hostname (pointing at the same ip-adress), but it used to be. As much as I can tell there is nowhere a hostname specified for FreeSWITCH. After typing "curl --trace-ascii - -k https://EXTERNAL_IP_ADDRESS:443/bigbluebutton/api" it doesn't look like I'm in need of a dummy nic. I tried googling and going through all files to check if there is anywher mentioned teh stratoserver.net subdomain, but there isn't... Why does FreeSWITCH pick this hostname anyway?

thank you very much in advance and

Best regards

Carl

[Fred Dixon]

In the upgrade, did you do

 sudo bbb-conf --setip <hostname>

where <hostname> is the fully qualified domain name of your server, such as

 sudo bbb-conf --setip demo.bigbluebutton.org

Can you try the above and let us know if your still getting the errors.

Alternatively, you can try

 https://github.com/bigbluebutton/bbb-install

with parameters for your hostname and e-mail address.  It will update BigBlueButton's configuration with a certificate from Let's Encrypt and do some auto-detection of NAT and configuration of FreeSWITCH for you.

 

Regards,... Fred

--

You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsub...@googlegroups.com.
To post to this group, send email to bigbluebutton-setup@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

[Carloss Boss]

Yes I did the setip to my hostname. The thing is I own 2 vservers, one for moodle and joomla and another one for bigbluebutton. The topleveldomain is at the vserver for webservers, here I am using only a subdomain for which is pointing at the external ip adress of the bbbserver.

So just did  sudo bbb-conf --setip <hostname> again (problem still occuring)

and i just used the bbb-install.sh to resetup ssl. I also already (already added all the necessesary ports to ufw) disabled ufw. Still FreeSWITCH inactive and using the wrong hostname when typing journalctl -xe. The Hostname it is displaying is the one that was preconfigured for the server when i bought it, but I already did setup the reverse lookup 2 days ago... The systemctl status is still giving me

● freeswitch.service - freeswitch

   Loaded: loaded (/lib/systemd/system/freeswitch.service; enabled; vendor preset: enabled)

   Active: inactive (dead) (Result: exit-code) since Mi 2018-03-21 20:41:11 CET; 7min ago

  Process: 8360 ExecStart=/opt/freeswitch/bin/freeswitch -u freeswitch -g daemon -ncwait $DAEMON_OPTS (code=exited, status=214/SETSCHEDULER)

Again thank you so much for taking your time for me
Best Regards, Carl

[Carloss Boss]

I just tried to wipe everything and do a clean install. After that i reinstalled BBB 2.0 by using the bigbluebutton.sh, but also here FreeSWITCH always stayed inactive (dead). Neither iptables, nor ufw are active, still "freeswitch.service: Failed at step SETSCHEDULER spawning /opt/freeswitch/bin/freeswitch: Operation not permitted".

Best regards,

Carl

[Fred Dixon]

It's in the docs :-).

  http://docs.bigbluebutton.org/install/install.html#fneeswitch-fails-to-start-with-a-setscheduler-error

Regards,... Fred

--

You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.

To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsubscribe...@googlegroups.com.

To post to this group, send email to bigbluebutton-setup@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

[Carloss Boss]

Even if I'm not using any containering, seems like my vserver can't set cpu priorities so i had to comment out CPUSchedulingPolicy=rr in /lib/systemd/system/freeswitch.service and freeswitch is running.

Only thing that seems to be left is, that freeswitch is not listening on port 5060, and when i checked netstat -ant | grep 5060 i once got

tcp6       0      0 127.0.0.1:5080          127.0.0.1:45060         TIME_WAIT  tcp6       0      0 127.0.0.1:5080          127.0.0.1:45060         TIME_WAIT  

but all the other times I got no response...

Best Regards,

Carl

[Fred Dixon]

Try

  netstat -antp | grep 5060

Here's what we see on our demo server

# netstat -antp | grep 5060

tcp        0      0 198.27.69.80:5060       0.0.0.0:*               LISTEN      10972/freeswitch

tcp6       0      0 2607:5300:60:1e50::5060 :::*                    LISTEN      10972/freeswitch

Try editing

  /opt/freeswitch/etc/freeswitch/sip_profiles/external.xml

and change

  <param name="wss-binding"  value=":5060"/>

to specifically bind to your external IP

  <param name="wss-binding"  value="aaa.bbb.ccc.ddd:5060"/>

Regards,... Fred

--

You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsub...@googlegroups.com.
To post to this group, send email to bigbluebutton-setup@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

[Carloss Boss]

I already had my external ip adress for wss-binding, but the port was wrong. Thank you so much!

But when doing --clean, --restart, --check there is now:

Error: FreeSWITCH is listening on IP address 127.0.0.1 for SIP calls, but

# The IP address (<internal_ip>) set bbb.sip.app.ip.

and netstat shows for freeswitch

tcp        0      0 81.169.152.134:8081     0.0.0.0:*               LISTEN      15430/freeswitch

tcp        0      0 81.169.152.134:8082     0.0.0.0:*               LISTEN      15430/freeswitch

no result for netstat -antp | grep 5060

Best regards,

Carl

[Carloss Boss]

Thank you so much for your help so far!! I'm coming forward slowly, but I'm coming forward!

Thank you so much! And I'm sorry if I'm asking dumb questions often, I'm trying my best to find solutions from older support threads and the documentation but I don't always find something.

[Fred Dixon]

Check the FreeSWITCH log

  /opt/freeswitch/log/freeswitch.log

for errors.  If it's unable to bind to port 5060, you should see an error there in the logs.

Regards,.. Fred

On Thu, Mar 22, 2018 at 7:08 PM, 'Carloss Boss' via BigBlueButton-Setup <bigbluebu...@googlegroups.com> wrote:

Thank you so much for your help so far!! I'm coming forward slowly, but I'm coming forward!

Thank you so much! And I'm sorry if I'm asking dumb questions often, I'm trying my best to find solutions from older support threads and the documentation but I don't always find something.

--

You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsub...@googlegroups.com.
To post to this group, send email to bigbluebutton-setup@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

[Carloss Boss]

There is only one error and its from 3 hours ago

2018-03-22 21:54:39.926239 [CONSOLE] switch_core.c:2930 End existing sessions

2018-03-22 21:54:39.926239 [CONSOLE] switch_core.c:2932 Clean up modules.

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:744 Chat Thread Ended

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:744 Chat Thread Ended

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1055 Deleting Application 'play_fsv'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1057 Write lock interface 'play_fsv' to wait for existing references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1055 Deleting Application 'record_fsv'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1057 Write lock interface 'record_fsv' to wait for existing references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1055 Deleting Application 'play_yuv'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1057 Write lock interface 'play_yuv' to wait for existing references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1055 Deleting Application 'decode_video'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1057 Write lock interface 'decode_video' to wait for existing references.

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1175 Write lock interface 'mod_fsv' to wait for existing
references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'fsv'

2018-03-22 21:54:39.926239 [CONSOLE] switch_loadable_module.c:2017 mod_fsv has no shutdown routine

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1055 Deleting Application 'hash'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1057 Write lock interface 'hash' to wait for existing references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1110 Deleting API Function 'hash'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1112 Write lock interface 'hash' to wait for existing references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1110 Deleting API Function 'hash_dump'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1112 Write lock interface 'hash_dump' to wait for existing references.

2018-03-22 21:54:39.926239 [NOTICE] switch_loadable_module.c:1110 Deleting API Function 'hash_remote'

2018-03-22 21:54:39.926239 [DEBUG] switch_loadable_module.c:1112 Write lock interface 'hash_remote' to wait for existing references.

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1375 Deleting Limit interface 'hash'

2018-03-22 21:54:39.946263 [CONSOLE] switch_loadable_module.c:2014 Stopping: mod_hash

2018-03-22 21:54:39.946263 [NOTICE] mod_logfile.c:192 New log started.

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:978 Deleting Codec VP8 99 VP8 Video 90000hz 0ms

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:978 Deleting Codec VP9 99 VP9 Video 90000hz 0ms

2018-03-22 21:54:39.946263 [CONSOLE] switch_loadable_module.c:2017 CORE_VPX_MODULE has no shutdown routine

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:978 Deleting Codec SPEEX 99 Speex 32000hz 20ms

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:978 Deleting Codec SPEEX 99 Speex 16000hz 20ms

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:978 Deleting Codec SPEEX 99 Speex 8000hz 20ms

2018-03-22 21:54:39.946263 [CONSOLE] switch_loadable_module.c:2017 CORE_SPEEX_MODULE has no shutdown routine

2018-03-22 21:54:39.946263 [DEBUG] switch_loadable_module.c:1175 Write lock interface 'mod_native_file' to wait for existing references.

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'AAL2-G726-32'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'DVI4'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'PCMU'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'G722'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'opus'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'AAL2-G726-24'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'SPEEX'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'b64'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'AAL2-G726-40'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'L16'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'G726-16'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'PCMA'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'PROXY'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'G726-24'

.......

2018-03-22 21:54:39.946263 [ERR] mod_event_socket.c:2969 Socket Error! Could not listen on :::8021

.......

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'oga'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'paf'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'pvf'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'raw'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'rf64'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'sd2'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'sds'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'sf'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'voc'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'w64'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'wav'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'wve'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'xi'

2018-03-22 21:54:39.946263 [NOTICE] switch_loadable_module.c:1185 Deleting File Format 'r8'

The only thing I can find is that this might have to do with my hostname. I just sat it again, but it still does not work...

Best Regards,

Carl

Am Freitag, 23. März 2018 00:25:46 UTC+1 schrieb Fred Dixon:

Check the FreeSWITCH log

  /opt/freeswitch/log/freeswitch.log

for errors.  If it's unable to bind to port 5060, you should see an error there in the logs.

Regards,.. Fred

On Thu, Mar 22, 2018 at 7:08 PM, 'Carloss Boss' via BigBlueButton-Setup <bigbluebu...@googlegroups.com> wrote:

Thank you so much for your help so far!! I'm coming forward slowly, but I'm coming forward!

Thank you so much! And I'm sorry if I'm asking dumb questions often, I'm trying my best to find solutions from older support threads and the documentation but I don't always find something.

--
You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsub...@googlegroups.com.

To post to this group, send email to bigbluebu...@googlegroups.com.

Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

[Carloss Boss]

I just installed everything manually the third time, and I got it working now. Thank you really much Fred! You do provide great support.

If you find this thread searching on google and happen to have issues with freeswitch (either inactive - dead, or not listening on port 5060 / some-random-port), while installing bigbluebutton on a strato vserver (or some other virtual server), most importantly make sure to follow this:

http://docs.bigbluebutton.org/install/install.html#running-within-an-lxd-container!

edit your freeswitch.service   ~# nano /lib/systemd/system/freeswitch.service    and comment out or delete all of these entries:

#LimitCORE=infinity

#LimitNOFILE=100000

#LimitNPROC=60000

#LimitSTACK=250000

#LimitRTPRIO=infinity

#LimitRTTIME=7000000

#IOSchedulingClass=realtime

#IOSchedulingPriority=2

#CPUSchedulingPolicy=rr

#PUSchedulingPriority=89

#UMask=0007

Best regards

Carl

[Fred Dixon]

Hi Carl,

Thanks for sharing this -- and glad to hear you got it working!

Regards,... Fred

--

You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-setup+unsub...@googlegroups.com.

To post to this group, send email to bigbluebutton-setup@googlegroups.com.

Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.