Installation Steps

Allow ports in the firewall

If there is an active firewall, allow following ports.

443/tcp
8088/tcp
5060/tcp
16386-32768/udp

Installation Steps

1. Follow this guide to install and configure Freeswitch
2. Please make sure that Solution Prerequisites are met for the desired deployment type. 
3. Download the deployment script deployment.sh and place it in the user home or any desired directory. This script will:
   1. delete the recording-solution directory if it exists.
   2. clone the required files for deployment
4. Create MySQL database schema for vrs using the script located in recording-solution/data/init.sql. This is an sql script which creates a database with name vrs and the required tables. Run this as an sql script/query in MySQL
5. Open recording-solution/docker/config.env and update the following environment variable 

   	Name	Description
   1	DB_HOST	vrs database host machine IP
   2	DB_NAME	vrs database name
   3	DB_USER	vrs database username
   4	DB_PASSWORD	vrs database password
   5	KEYCLOAK_PERMISSION_GROUP	Keycloak Group from step 12 of keycloak setup
   6	VRS_URL	https://192.168.1.101  Replace the IP with local machine in non-HA deployment, replace it with Virtual IP in case of HA
   7	LOCAL_MACHINE_IP	192.168.1.101 local machine IP in no-HA deployment, replace it with Virtual IP in case of HA
   8	TZ	Asia/Karachi
   9	TRUST_STORE_PATH	/app/ssl/truststore.jks keep it same
   10	TRUST_STORE_PASSWORD	Expertflow464
   11	DB_USER	Keycloak database username
   12	DB_PASSWORD	Keycloak database password
   13	DB_ADDR	Keycloak database machine IP
   14	DB_DATABASE	Keycloak database name
   15	CCX_PRIMARY_IP	Primary UCCX IP
   16	CCX_SECONDARY_IP	Secondary UCCX IP
   17	CCX_ADMIN_USERNAME	CCX Admin username
   18	CCX_ADMIN_PASSWORD	CCX Admin password
   19	FINESSE_URL	https://uccx12-5p.ucce.ipcc:8445
   20	DIRECTORY_PATH_TO_MONITOR	The path for archival process to monitor, it should be the same path where sessions are kept, mostly /home/efadmin/cucmRecording/sessions
   21	ARCHIVED_MEDIA_FILES_EXTENSION	mp4 #keep it same
   22	FILE_EXTENSION	wav #keep it same
   23	NO_OF_DAYS	1
   24	SFTP_HOST	SFTP host IP for archival
   25	SFTP_PORT	22
   26	SFTP_USERNAME
   27	SFTP_PASSWORD
   28	ARCHIVAL_JOB_INTERVAL	15
   29	STEAM_DELETION_JOB_INTERVAL_HRS	24
   30	RETRY_LIMIT	2
   31	ARCHIVAL_PROCESS_NODE	active
   32	NO_OF_DEL_DAYS

1. To execute the script, give it the execute permissions and execute it. This command will clone the skeleton project for recording solution. the recording-solution directory contains all the required files for deployment.

   $ chmod 755 deployment.sh
   $ ./deployment.sh

2. Navigate to recording solution directory and execute the following commands:

   # chmod 755 install.sh
   # ./install.sh

   Verify all the containers are up and healthy 

3. Verify if keycloak container is healthy (docker ps), if it is on restarting, kill  (docker kill keycloak) and remove (docker rm keycloak) the keycloak container then run ./install.sh. Wait for keycloak container to become healthy.
4. Set up keycloak

5. Once keyclaok is set up, update below environment variables in recording-solution/docker/config.env file. 

   	Name	Description
   1	KEYCLOAK_REALM_NAME	Realm name created in step 4 of keycloak setup
   2	KEYCLOAK_CLIENT_ID	Keycloak client id from step 6 of keycloak setup
   3	KEYCLOAK_CLIENT_SECRET	Keycloak client secret from step 8 of keycloak setup
   4	KEYCLOAK_URL	keep default
   5	KEYCLOAK_PERMISSION_GROUP	Keycloak Group from step 12 of keycloak setup

6. To update the self signed certificates for VRS, get the public authority or domain signed certificate .crt and .key files, name them server.crt and server.key and replace the files in /recording-solution/config/certificates with these two new files. Names should be exactly same.
7.  Run ./install.sh again

8. Run the following command to ensure that all the components are up and running. 

   # docker ps

9. Go to https://VRS-IP/#/login to access the application.
   
   
10. Configure SIP trunk to enable CUCM to send SIP events to VRS for call recordings. Two sip trunks should be configured in case of HA.
    
    
11. (HA Only) Install and configure rsync to synchronize the recording folder on both machines in HA.

    1. Install Rsync using the below command
       

       # sudo apt-get install rsync

    2. Note down the directory that is used for recordings, assume it is /home/efadmin/cucmRecording/

    3. Configure passwordless login to the other machine by running the below command. Press [Enter] When prompted for a passphrase to leave the field blank.
       

       # sudo ssh-keygen -t rsa -b 2048

    4. Copy the generated keys to the other machine
       

       # sudo ssh-copy-id -i /root/.ssh/id_rsa.pub efadmin@other-machine-IP

    5. Configure a cron job to automate Rsync. Enter the below command.
       
       

       # sudo crontab -e

    6. The above command will open a file, edit it, and add the below line at the end of the file. Replace the other-machine-ip with the IP of the other machine in HA
       
       

       */1 * * * * sudo rsync -avzhe ssh efadmin@other-machine-ip:/home/efadmin/cucmRecording/ /home/efadmin/cucmRecording/

       This will run the Rsync command every minute which will sync the local /home/efadmin/cucmRecording/ directory with other-machine /home/efadmin/cucmRecording/ directory. Any files added there will show up here and vice versa.

    7. Follow these steps on the other machine as well
       
       

12. (HA Only) Repeat the following steps on both machines.

    1. Go to recording-solution/HA

    2. Give execute permission and execute the script. This will create a keep-alived directory.

       # chmod +x keepalived.sh # ./keepalived.sh

    3. Update the following three variables in keep.env file inside HA directory.  

       Name	Description
       KEEPALIVED_UNICAST_PEERS	IPs of the machines in the cluster. On each machine, this variable should have a list of IPs of all the other machines in the cluster. The format of the list is as below:  192.168.1.80
       KEEPALIVED_VIRTUAL_IPS	Virtual IP of the cluster. It should be available in the LAN. For example: 192.168.1.245
       KEEPALIVED_INTERFACE	Name of the network interface with which your machine is connected to the network. On CentOS, ifconfig or ip addr sh will show all the network interfaces and assigned addresses.

    4. Give the execute permission and execute the script:  VRS should be now accessible via virtual IP

       # chmod +x keep-command.sh # ./keep-alive.sh