Flip1405 – The Failover Asterisk Solution
Posted: July 12th, 2008 | Author: admin | Filed under: Asterisk VoIP, Linux, Mac, Tech | Tags: asterisk failover, asterisk redundancy, Asterisk VoIP, bash, centos, failover, flip 1405, flip 1405 failover, flip1405, flip1405 failover, gregg hansen, Linux, redundancy, script, technology, uptime, voice over ip, voip, voip-info | 44 Comments »20090327 – Update
Many people email me after using my scripts and optimizing them. I don’t claim to be a ‘good’ programmer at all, but my bash scripts work. Functional-programmer/admin = Me
Anyways, that shows you how great the community is with open-source software. Without even asking my scripts are constantly improved.
The new version consists of only 1 file, that is enabled for master or slave by changing a variable.
The rsync commands are also included in the file.
Make sure to set the bindaddr to the virtual IP address in /etc/asterisk/sip.conf or /etc/asterisk/sip_general_custom.conf
IE. bindaddr=192.168.1.2 ;IP of Virtual interface
Now you can wget the one file for both servers here:
Here is the updated version of Flip1405:
#!/bin/sh
set -x
#FLIP1405 - Failover Server Solution
#RUN ON PRIMARY ASTERISK SERVER
#ORIGINAL AUTHOR GREGG HANSEN 20080208 <hansen.gregg@gmail.com>
#MODIFIED BY GREGORY BOEHNLEIN 20090201 <damin@nacs.net>
#DEPENDENCIES: nmap, arping
# Version 1.0 - 2009-03-25
# - Consolidated Master/Slave scripts into a single script
# - Converted hardcoded interface / IP configuration to variable based
# - Forced Asterisk to issue a "reload" to bind to the floating IP
# - Consolidated external rsync-replicate script to be self-contained
# If set to "1" this is the Master server.
# If commented out, or set to anything else, this will act as if it is a slave
MASTER="1"
# The Master and Slave IP Addresses for Replication / Testing
MASTERIP="192.168.1.5"
SLAVEIP="192.168.1.6"
# The IP address that will float between Master and Slave
FLOAT="192.168.1.4"
# The device on which the floating interface exists
DEVICE="eth0"
# The specific interface alias on the device
IFACE="$DEVICE:1"
# Main Code
if [ "$MASTER" == "1" ] ; then
#if Local Asterisk up = 'open|filtered'
STATUS=$(nmap --system-dns -p 4569 -sU 127.0.0.1 | awk '{print $2}' | grep open)
#if primary owns virtual = '207.166.192.51'
PRIMARYIP=$(ifconfig "$IFACE" | grep "$FLOAT" | awk '{print $2}' | sed 's/addr://g')
#if virtual is not pingable = 'down.'
VIRTUALIP=$(nmap --system-dns -sP "$FLOAT" | grep down | awk '{print $4}')
# Configuration File Replication from Master to Slave
rsync -avzr --rsh=ssh /etc/asterisk root@$SLAVEIP:/etc/
rsync -avzr --rsh=ssh /var/spool/asterisk/voicemail root@$SLAVEIP:/var/spool/asterisk
rsync -avzr --rsh=ssh /var/lib/asterisk/moh root@$SLAVEIP:/var/lib/asterisk
rsync -avzr --rsh=ssh /var/lib/asterisk/sounds root@$SLAVEIP:/var/lib/asterisk
#rsync -avzr --rsh=ssh /usr/src root@$SLAVEIP:/usr/src
#/root/rsync_replicate > /dev/null 2> /dev/null
if [ "$STATUS" == "open|filtered" ] ; then ###is primary asterisk up?
if [ "$PRIMARYIP" != "$FLOAT" ] ; then ###does primary not own virtual ip?
if [ "$VIRTUALIP" == "down." ] ; then ###is the virtual IP not pingable?
ifconfig $IFACE $FLOAT/24 up
arping -U -c 5 -I $DEVICE $FLOAT ###Gratuitous ARP request
service asterisk reload
fi
fi
else
service asterisk start
ifconfig $IFACE down
fi
else # We must be running as Slave node
###if Primary Asterisk up = 'open|filtered'
PRISTATUS=$(nmap --system-dns -p 4569 -sU $MASTERIP | awk '{print $2}' | grep open)
###if Secondary Asterisk up = 'open|filtered'
SECSTATUS=$(nmap --system-dns -p 4569 -sU 127.0.0.1 | awk '{print $2}' | grep open)
###if local owns Virtual = '207.166.192.51'
PRIMARYIP=$(ifconfig "$IFACE" | grep "$FLOAT" | awk '{print $2}' | sed 's/addr://g')
###if Virtual not pingable = 'down.'
VIRTUALIP=$(nmap --system-dns -sP "$FLOAT" | grep down | awk '{print $4}')
if [ "$PRISTATUS" != "open|filtered" ] ; then ###is primary asterisk down?
if [ "$SECSTATUS" == "open|filtered" ] ; then ###is secondary asterisk up?
if [ "$PRIMARYIP" != "$FLOAT" ] ; then ###does secondary not own virtual ip?
if [ "$VIRTUALIP" == "down." ] ; then ###is the virtual IP not pingable?
ifconfig $IFACE $FLOAT/24 up
arping -U -c 5 -I $DEVICE $FLOAT ###Gratuitous ARP request
service asterisk reload
fi
fi
else
service asterisk start
fi
else
if [ "$SECSTATUS" == "open|filtered" ] ; then ###primary is up, is secondary up? (there can be only one!)
service asterisk stop
else
echo
if [ "$PRIMARYIP" == "$FLOAT" ] ; then
# If the Primary is up but we still own the Virtual IP, shut it down
ifconfig $IFACE down
fi
fi
fi
fi
<Original release description>
A while back I wrote a bash script to manage a virtual IP between two Asterisk VoIP servers. I finally decided to release it to the public after extensive testing in production environments. Most smaller companies can deal with their phone system failing over to their cell phones for an hour or so in the event of a hardware failure on the Asterisk server. However, business/enterprise-level systems lose (tens)thousands of dollars per hour that the phone system is down. With Flip1405 implemented, the hot-failover server picks up the virtual IP and there is less than 30 seconds of downtime.
The only dependencies for Flip1405 are nmap and arping
1. Download the files here. flip1405_primary flip1405_secondary (For your wgetting pleasure) 
2. Create a cron.every1 folder on each server, copy flip1405_primary and flip1405_secondary to their respective servers.
3. Make sure you edit the files with your IP addressing scheme. I commented what you need to find and replace.
4. Setup shared-keys so the servers can copy between each other without user intervention. Setup Login without password
5. Schedule a “rsync -avz /etc/asterisk/* root@secondaryIP:/etc/asterisk”
To replicate the configs from the primary to the secondary every 30 minutes or so (another cronjob).
You also can use the same command (diff dir) to replicate all other files, sounds, VM, etc.)
Here is an example script I use to replicate all configs every hour. rsync_replicate
This works out so you can reboot your primary box, the secondary will take over for the time being. As soon as the primary is up, the secondary will resume slave/standby mode.
Simple and functional. Please leave a comment with any questions and I will respond asap.
Hi
can you explain where this script going to be installed.
so i need 3 servers for this to run
iam using user to register with Openser
Openser intern send to PSTN using asteriskserver
this where the problem come in if one of the Asterisk server go down, iam not able to send the traffic to another server, i can use failover, but if i have less number of loops in openser, it serve better
so how does the network diagram looks yours
user—openser—asterisk ( existing)
with your script
users—openser—-scriptserver——Asterisk1
|———–asterisk2
is this correct
balaji
The script actually runs on the Asterisk server.
You would schedule the primary script to run on your asterisk(PSTN) gateway and setup a secondary asterisk(PSTN) with the secondary script. I’ve found that cron.every1(minute) works best.
This way the script would manage the virtual IP between both of the Asterisk (PSTN) gateways and it also updates the ARP tables via a gratuitous ARP request.
Your openser would always send traffic to the same IP and any failover would be seamless within 25 seconds. You could always set the script to run every 15 seconds, there isn’t much overhead at all (just a simple query to see if the other * server is responding on UDP 5060.
user-openser—asterisk (primary script-live) PSTN
\—asterisk (secondary script-standby)—/
Let me know if you need any help setting it up. I will upload some scripts to replicate configs via rsync. This will make the install/config process much easier.
Hi Does this see if Asterisk is up or just that the virtual ip is up ? if its the latter then why not use heartbeat ?
I’ve found that heartbeat is a pain to setup based on all of its’ dependencies and the configuration.
My script actually manages the virtual IP based on Asterisk responding to requests. It queries UDP 5060 to see if the main server is running.
I’ve also found out too often when using heartbeat that the service will hang, but the heartbeat will continue on.
No matter what the situation, Flip1405 has yet to cause a system outage for more than 30 seconds in the event of a hardware failure for my client companies.
Thank you for interest and please let me know if you have any other questions.
I would really like some help going thru this set up. Send me an e-mail if you have some time.
[...] Flip1405 Manages virtual IP between two Asterisk servers and queries UDP5060 for state changes [...]
will give it a shot…Good job
is there a way to replicate the mysql database for CDR records in case the primary server dies from hardware failure and then we could restore the data from the secondary box?
Lawrence,
You can use the MySQL Master-Slave replication configuration explained here.
http://members.cox.net/midian/howto/mysqlReplication.htm
Thank you.
im having a brain issue here on the pri box can the IP be a live ip ie.. 208.x.x.x as static ip and the sec box have this same ip as its virtual? or do i need to set up separate live ip on both boxes and a 3rd ip as the virtual?
i have a small call inbound call center for a taxi company 8 pots lines and 2 Sip providers 1 sip provider uses authentication for traffic, ( no need for a static ip) the other needs a static IP for sip traffic (authenticates by IP)
i then have a second nic on 192.168.x.x for the polycom phones to authenticate and pass their traffic (polycoms dont NAT very well is the reason for this weirdness)
my thinking is that i need to setup the live side for the failover, or do i need to set up both sides live and NAT to failover? or could i set up a virtual IP on both nics on the nat side example eth1:0 192.168.20.100 PRI box and eth1:0 192.168.20.100 on SEC box? since asterisk is not running on the SEC box it shouldnt process any sip requests?
also i am using freepbx as the front end an had to modify the line service asterisk start to amportal start. when using service asterisk start because of the way freepbx starts asterisk asterisk is thrown into a start fail loop.
this is a great piece of work, the * community has needed something simple for the smaller installs, i to had given up on heartbeat with the dependacy hell and huge learning curve.
thanks again
Have you seen heartbeat and the Linux-HA project? How is yours different from say heartbeat+DRBD?
This really is cool – I’ve played (tried) various methods like keepalived, and various other heartbeat methods but they all seem a bit too complicated for my limited experience. Does this work OK with two Asterisk boxes in different locations – or do they need to be on the same subnet? I have a couple of Servers, one in a managed Data Centre and one at home…
Thanks,
The Asterisk servers have to be on the same subnet because they share the (1) virtual IP. The real IP addresses can be whatever you want them to be.
Let me know if you have any questions and I will be glad to help.
Gregg
I’m newbie to Linux and Asterisk and went through the process as described above but logically having some issues.
Q: What IP address is used for Phone registration? Primary or Virtual?
Q: When I take down the Primary Machine secondary machine should be the registrar for the phones and using Virtual IP for that make sense but in flip1405_primary it takes it down if the primary ip is responding.
I may not be asking the right question please excuse me for that.
VanMan
How i may contact admin this site? I have a question.
iijiivei
So what happens to users voicemail and such?
Say server 1 fails, and is down for two days…server 2 takes over for those two days.
But when server 1 comes back up, any CDR and voicemail that has been saved on server 2 gets deleted? Or will the syncing work both ways?
Hi,
Thanks for your script, I just tested it.
some time ago I had tought to use UCARP as failover solution for my asterisk servers , UCARP was find but was not suitable with all “clients “.
IAX softphones could not register on asterisk when using a virtual IP ,
SIP clients depends
SCCP clients no problems
I have the same result with your script,
did you succeed registering IAX clients on a virtual IP of an asterisk server ?
thanks,
jl
When Server1 fails, then all of the calls drop, right? But then Server2 comes online so that the next call 30s later is successfully connected. Correct?
I’m not complaining. I just want to get some clarification.
Thanks
Hi
I’m just planning a large Trixbox install that requires failover and came across Flip1405. Can this solution be applied to a Trixbox installation?
is it possible to failover but have manually interventention required to fail back? this will allow time to investigate the issue and control when the fail back outage will occur like outside of busy hour, plus it means less chance of a flip-flop issue arising.
Thanks
I have implemented your script and added some logging and email alerting. I have come across an issue which I am wondering if you have experienced.
I have both my asterisk boxes on a private IP addressed local LAN and access through my linux iptables firewall to the internet, I have all services running fine using the VIP IP for the port forwarding for SIP/RTP/RTCP traffic, the issue is when failing over the IP tables does not seem to use the GARP as a realtime change for the VIP port forwarding instead it keeps the old MAC address and send incoming responses to registration attempts to the asterisk box that has failed. Have you seen this behaviour and any suggestions?
Cheers
Paul
This is good job. Anyway my question is, I’ve about 50 Cisco 7960 phones registered to my Asterisk server, can I use this program? like in Phone’s setting I use virtual IP address as SIP proxy, so if primary Asterisk box goes down, will Cisco phones registered to 2ndary Asterisk box without restarting them?
This is important question for me, would be better if you send me email aswell at syedsauds@gmail.com
I have seen this question asked but I havent seen any answers, what happens when server one comes back online, does server 2 (the failover server) copy and sync all the new files that have been created while server one was down, like new voicemail and new cdr info etc back to server one?
I have followed all ur point step by step, I am trying to run your flip1405 primary script in my asterisk server system but its not running, can u tell me what’s the problem?
what should I do to run the script in linux operating system?
Thanks & Regards
I want to try the above procedure for failover of asterisk server. I’m new to Linux. I had some questions regarding this
1) I downloaded and modified the rsync_replicate shell file according to my ipaddress. My question is where to keep rsync_replicate shell file in the primary or secondary. If in primary what is the destination path.
2) I created cron.every1 folder in my primary and secondary servers. I had one more doubt is it necessary to keep them in cron_every1 folder or we can keep in cron.daily folder located in /etc.
Gregg,
Thanks for creating this! I’ve made several updates/changes to your script and have been using it successfully in production for a few weeks now. The changes are as follows:
# Version 1.0 – 2009-03-25
# – Consolidated Master/Slave scripts into a single script
# – Converted hardcoded interface / IP configuration to variable based
# – Forced Asterisk to issue a “reload” to bind to the floating IP
# – Consolidated external rsync-replicate script to be self-contained
I’d like to give these back to the community, but wanted to have a conversation with you first about the potential for setting up a little more structured way to release the code. Can you drop me an E-mail when you get a chance?
im having a weird error when runnig the scripts, i changed to CentOS 5.2 with freepbx when running the script i get SIOCSIFFLAGS: Cannot assign requested address, if i do ifconfig eth0:1 192.168.xx.xx/24 up manually from command line eth0:1 shows up until the next cron.every1 rotation.
checked to see if i had nmap and arping installed and can see both packages….
i have the scripts running and a few different locations , just cant seem to find what i am missing in this current build..
any suggestions would be helpful
I still think heartbeat is a much more reliable solution although agreed it is slightly more difficult to setup. That being said I can see where this is useful for those who need something immediately while they work on a more robust solution.
This is a good work but my question is you mentioned the rsync method to sync the data between both servers but i want primary server should share only updated/changed data but not everything, because overwriting everything is not good approach. Plz guide. thanks
Hi,
It seems that an update from a reader/contributor to my code removed my existing rsync script.
Please use the script code below (modify as needed), as it will only sync to “touched” files.
#!/bin/bash
rsync -avz –size-only -e “ssh -i /root/rsync-key” /etc/asterisk/extensions.conf root@192.168.1.3:/etc/asterisk/extensions.conf
rsync -avz –size-only -e “ssh -i /root/rsync-key” /etc/asterisk/voicemail.conf root@192.168.1.3:/etc/asterisk/voicemail.conf
rsync -avz –size-only -e “ssh -i /root/rsync-key” /etc/asterisk/queues.conf root@192.168.1.3:/etc/asterisk/queues.conf
rsync -avz –size-only -e “ssh -i /root/rsync-key” /etc/asterisk/sip.conf root@192.168.1.3:/etc/asterisk/sip.conf
rsync -avzr –size-only -e “ssh -i /root/rsync-key” /var/spool/asterisk/voicemail root@192.168.1.3:/var/spool/asterisk
rsync -avzr –size-only -e “ssh -i /root/rsync-key” /var/lib/asterisk/moh root@192.168.1.3:/var/lib/asterisk/moh
rsync -avzr –size-only -e “ssh -i /root/rsync-key” /var/lib/asterisk/sounds root@192.168.1.3:/var/lib/asterisk
rsync -avzr –size-only -e “ssh -i /root/rsync-key” /home/PlcmSpIp root@192.168.1.3:/home
rsync -avzr –size-only -e “ssh -i /root/rsync-key” /var/www/html/ root@192.168.1.3:/var/www
I noticed a typo in your script
rsync -avzr –rsh=ssh /var/lib/asterisk/moh root@$SLAVEIP:/var/lib/asterisk/moh causes the moh folder to be created on folder deeper.
removing the /moh/ fixes the typo
rsync -avzr –rsh=ssh /var/lib/asterisk/moh root@$SLAVEIP:/var/lib/asterisk
Thank you very much for the contribution! I edited the script.
Hi,
I’m using the latest version but have some questions.
I’ve added one cron task as root with crontab -e:
*/1 * * * * /usr/bin/flip1405.sh
The script seems like is doing nothing, if I reboot the master server, the slave does not get the virtual ip, when the master server is up again i need to execute manually /usr/bin/flip1405.sh to have the virtual ip as secondary on my ethernet card.
I don not know if is necessary to add any other paremeters to the cron command?
Best regards,
Hi,
As Virtual IP requires both boxes to the on the same subnet, do you have any clue on how the redundancy can be archived without these two servers being on the same subnet?
Hi I have a Elastix setup and works great I will like to implement this script but I need to know where to install it in the server and if there is anything else besides the script at the top of this post that needs to be added or if you have a guide on how to implement it I will appreciated it
Thank you
Tony Cruz
Hi Tony,
You will need to implement the script just in the default locations for the cron.
Syncing the configuration data will be more of a challenge because you need to get the databases to sync. But for simple failover, you can get it all done by following the directions in the post.
Hope that helps,
Gregg
Hi,
The idea with the virtual IP is that the devices pointing to it will seamlessly go to either server when the IP changes ownership.
If you can describe the environment you’d like to setup, I would be able to better understand and discuss a solution.
You can go through the script and post from the Linux CLI to test.
Paste in the:
VARIABLE=$(nmap -sU -p 5060 blah blah blah etc etc)
Then:
echo $VARIABLE
That way you can see if you are getting the correct data that the script needs to run. If you can send me your layout (IPs) then I would be able to help you.
Hope that helps,
Gregg
Looking for help for setting up asterisk failover. I have to setup 2 servers primary and secondary. Let me know your affordable price please.
Awesone stuff, just finished testing it all and will be putting it into production soon.
A note, Asterisk needs to be bound to the floating IP for some handsets to register/accept calls properly using ‘bindaddr: x.x.x.x’. I put this in /etc/asterisk/sip_general_custom.conf
Thanks much folks!
Thank you, I forgot to mention the bindaddr portion in the article. I will add that now.
Cheers.
In the instruction above you mentioned “Make sure to set the bindport to the virtual IP address”, shouldn’t it be bindadrr ? based on the comment right above.
Hi,
Looks interesting! 2 Questions
What about astdb?
What if IAX2 support isn’t installed?
Maybe the check would be better for SIP.
Regards,
Brian
Hi, over there,
this is really a cool script and it does what it was designed for. Just tested it.
Since you wanted feedback:I am just trying to have some more services checked. Maybe my ambitions are not so clever cause I could try it out with heartbeat2 … Because I am not only running httpd and asterisk on it. Furthermore, I have mysql-replication with Master and Slave (which is PRI and SEC, respectivly) and just because of this fact (keeping database clean) I have to “send” some mysql commands so that the slave becomes master.
I don’t know if you care at all about that, but I just wanted to thank you for that good bash-template … but if YOU got any hints for me, my ears and eyes are wide opened
best wishes,
r0n