Page tree
Skip to end of metadata
Go to start of metadata

To download a PDF version of this MOP, click here

Document ID: 550-07311
Document Version
: 2.0
Software Version: 5.0.x/5.1.x
Tested: April 3, 2017
Published: April 20, 2017

 

Table of Contents

 

1 Introduction

This Method of Procedure (MOP) is executed to disable the JBoss Debugger Listening on Port 3787.

Note

This MOP is applicable for SBC 5.0.x and 5.1.x releases. For a HA pair, execute this MOP on both Active and Standby SBCs.

Warning

This is a service affecting procedure. Restart the SBC post the procedure.

2 Prerequisites

  • Tool to access Secured Shell (ssh). For example; PuTTY
  • Access to "nmap" tool.

3 Procedure

  1. Access the Active SBC using a secured shell (ssh) on port 2024.
  2. Use the credentials: Username: linuxadmin and Password: <linuxadmin_password> to gain access.

    login as: linuxadmin
    linuxadmin@<Active SBC> password:
  3. Use the following command to switch user to 'root' with the password as <root_password>.

    linuxadmin@<Active SBC>:~$ su -
    Password:
    [root@<active SBC> ~]#
  4. Navigate to /opt/sonus/ema directory.

    [root@<Active SBC> ~]# cd /opt/sonus/ema
    [root@<Active SBC> ema]#
  5. Open "SonusEma" script file in a Vi editor:

    [root@<Active SBC> ema]# vi sonusEma
  6. Remove only the following text from JAVA_OPTS line of sonusEMA file.
    -Xrunjdwp:transport=dt_socket,address=3787,server=y,suspend=n

    Figure : Java Opts Line to Remove

  7. Save and exit sonusEma script file from the vi editor using the command:

    esc(key):wq 
  8. Stop the SBC using the command: sbxstop.

    [root@GLOBEGRAPE ema]# sbxstop
    Stopping safplus:
    WARNING SAFplus is not running on node [2]. Cleaning up anyway...
    INFO Stopping AMF watchdog...
    INFO Waiting for AMF to shutdown...
    Performing PRS process cleanup...
    Installing platform default server ACL rules...
    Unloading Sonus KLMs...
    Removing shared memory sections (excluding CPS)...
    Removing semaphores (excluding CPS)...
    INFO Unloading TIPC ...
    . ok
    [root@GLOBEGRAPE ema]#
  9. Restart the SBC using the command: sbxstart.

    [root@GLOBEGRAPE ema]# sbxstart
    /etc/init.d/sbx: line 357: /sys/module/rcutree/parameters/rcu_cpu_stall_suppres: No such file or directory
    Starting safplus:
    INFO Saved previous log directory in /var/log/sonus/sbx/asp_saved_logs/normal/log_CE_Node2_2017_03_28_15_51_25
    INFO Saved previous run directory in /var/log/sonus/sbx/asp_saved_logs/normal/run_CE_Node2_2017_03_28_15_51_26
    INFO Unloading TIPC ...
    Starting policy server DB (sonusdb)...
    INFO Starting AMF...
    INFO Starting AMF watchdog...
    . ok
    [root@GLOBEGRAPE ema]#

Note

For a HA pair, execute the same steps in Standby SBC too.

4 Verification

Follow these steps to verify if the implemented steps works as per expectation:

Note

For a HA pair, execute these steps on both Active and Standby SBCs.

  1. Execute the following "nmap" command to check the status of 3787 port:

    nmap -sV -P0 -p 3787 <SBC IP>
  2. The output should be:

    Interesting ports on <SBC IP>: 
    PORT STATE SERVICE VERSION 
    3787/tcp filtered unknown 
  3. Add the following ACL rules on all the management interfaces:

    % set addressContext default ipAccessControlList rule remotedebug1 precedence 1 protocol tcp mgmtIpInterfaceGroup mgmtGroup mgmtIpInterface mgmtIntf1 destinationPort 3787 action accept state enabled 
    
    % set addressContext default ipAccessControlList rule remotedebug2 precedence 2 protocol tcp mgmtIpInterfaceGroup mgmtGroup mgmtIpInterface mgmtIntf2 destinationPort 3787 action accept state enabled 
  4. Execute the "nmap" command again:

    nmap -sV -P0 -p 3787 <SBC IP>
  5. The output should be:

    Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2017-02-16 01:50 EST 
    Interesting ports on <SBC IP>: 
    PORT STATE SERVICE VERSION 
    3787/tcp closed unknown

This confirms the verification process.