Files

Mike Swanson 7c8488ad14 sync: Auto-sync from acg-guru-5070 at 2026-03-19 19:25:24

Synced files:
- Session log 2026-03-19 updated (autostart, ScreenConnect, Flarum forum, theme, Node.js)
- docs/forum-posts/ recovered from old btrfs home (7 forum post guides)

Machine: acg-guru-5070
Timestamp: 2026-03-19 19:25:24

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-19 19:26:44 -07:00

15 KiB

Raw Blame History

Session Log: 2026-03-19

Session Summary

Major workstation setup and Dataforth infrastructure session. Set up new CachyOS Linux install on ASUS laptop (acg-guru-5070), fixed multiple system issues, wiped old Windows drive for /home, reset ESXi licenses, and diagnosed/fixed Dataforth FreePBX phone system.

Work Completed

1. Tailscale Validation & Fix

Issue 1: --accept-routes was false - peers advertising routes but not accepted
Fix: sudo tailscale set --accept-routes
Issue 2: systemd-resolved and NetworkManager misconfigured for MagicDNS
Fix: Created /etc/NetworkManager/conf.d/dns.conf with dns=systemd-resolved, symlinked /etc/resolv.conf to /run/systemd/resolve/stub-resolv.conf, restarted both services and tailscaled
Result: All health warnings cleared, MagicDNS working

2. Google Chrome Installation

Installed via paru -S --noconfirm google-chrome (AUR)
Version: 146.0.7680.153

3. Display Brightness Fix

Issue: Brightness at 100% per KDE but visually dim
Root cause: intel_backlight was at 100/496 (~20%), KDE was reading nvidia_0 (100/100)
Fix: Set intel_backlight to max: echo 496 > /sys/class/backlight/intel_backlight/brightness
Hotkey fix: Created /etc/udev/rules.d/backlight.rules to hide nvidia_0 so KDE only controls intel_backlight
Ran sudo chmod 000 /sys/class/backlight/nvidia_0 for immediate effect
Restarted plasma-powerdevil

4. Secondary Drive Setup as /home

Drive: nvme1n1 (954GB SK Hynix) - old Windows BitLocker drive
Steps:
- Wiped with wipefs -a
- Created GPT partition table with single ext4 partition (label: "home")
- UUID: 4143f922-455f-4154-8f87-6df123548916
- Copied existing /home via rsync -aAXv /home/ /mnt/
- Updated /etc/fstab - replaced btrfs @home subvolume entry with new ext4 mount
- Original btrfs @home subvolume still exists on OS drive as backup
Requires reboot to activate

5. ESXi License Resets (Dataforth)

192.168.0.122: Evaluation expired, reset via SSH
- Created sysadmin user (Paper123!@#) for SSH access
- Reset: rm -r /etc/vmware/license.cfg && cp /etc/vmware/.#license.cfg /etc/vmware/license.cfg
- Restarted vpxa and hostd
- New expiration: 2026-05-18
192.168.0.124: Same procedure via root user
- SSH enabled from web UI
- New expiration: 2026-05-18

6. FreePBX/Asterisk Phone System Fix (Dataforth)

PBX: 192.168.100.2 (pbx.intranet.dataforth.com)
OS: Sangoma FreePBX Distro 17 / Debian 12
VM: On ESXi 192.168.0.122, VM ID 9, SAN-D1-15k datastore

Issues Found & Fixed:

Asterisk was not running - started with fwconsole start
fwconsole reload was failing with Undefined array key "trunk_name" in PJSip.class.php line 504
- Root cause: getAllTrunks() SQL query (LEFT OUTER JOIN with IS NULL) returns extension data mixed with trunk data. Extensions lack trunk_name key.
- Also: Orphaned trunk ID 2 (FirstDigital_SIP) in pjsip table with no matching entry in trunks table
- Fix: Patched line 504: $tn = $trunk['trunk_name'] ?? null; if ($tn === null) { continue; }
- Backup at PJSip.class.php.bak
- Deleted orphaned trunk: DELETE FROM pjsip WHERE id='2'
Asterisk logging was broken - no full log file configured since Jan 27
- Fix: Added full => notice,warning,error,verbose,dtmf,fax to /etc/asterisk/logger_logfiles_custom.conf
- Logger now writing to /var/log/asterisk/full
Call transfer event listener was intermittently failing with "Asterisk is not connected" errors in AMI

PBX Status After Fix:

Asterisk running, PJSIP trunk (FirstDigital) connected
30+ extensions registered
fwconsole reload succeeds
Full logging restored
SIP trunk: FirstDigital at 66.7.123.215 (match: 66.7.123.0/24)
Outbound CID: 5207411404

7. Packages Installed

nano (for visudo)
sshpass (for automated SSH)
expect (for ESXi/PBX SSH sessions)
google-chrome (AUR)

8. Sudo Configuration

Added guru ALL=(ALL) NOPASSWD: ALL to sudoers via EDITOR=nano visudo

Credentials

ESXi Host 1 (192.168.0.122)

Web UI: https://192.168.0.122
Root: root / Gptf*77ttb!@#!@#
SSH User: sysadmin / Paper123!@#
VMs: AD1, AD2, FILES-D1, PBX

ESXi Host 2 (192.168.0.124)

Web UI: https://192.168.0.124
Root: root / Gptf*77ttb!@#!@#

PBX (192.168.100.2)

SSH: sangoma / Gptf*77ttb!@#!@#
Web UI: https://192.168.100.2
Network: VLAN100 (192.168.100.0/24)
SIP trunk: FirstDigital (66.7.123.215)
SIP network: 10.208.107.116/30 (SIP_Group vSwitch)
DIDs: 520-741-1404 (ring group 600), 520-917-0493 (ext 269), 520-917-0495 (ext 273), 520-917-2235+

Existing (used this session)

AD2 (192.168.0.6): INTRANET\sysadmin / Paper123!@#
D2TESTNAS (192.168.0.9): root (SSH key auth)

Infrastructure Details

Workstation: acg-guru-5070

OS: CachyOS (Arch-based), kernel 6.19.7-1-cachyos
CPU/GPU: Intel Arrow Lake-S + NVIDIA RTX 5070 Ti Mobile
Drives:
- nvme0n1: 954GB (CachyOS install, btrfs)
- nvme1n1: 954GB (ext4, formatted as /home, UUID: 4143f922-455f-4154-8f87-6df123548916)
Tailscale IP: 100.95.216.79
Tailnet: tailea2889.ts.net (azcomputerguru.com)

Tailscale Subnet Routes

pfSense-2: 172.16.0.0/22
D2TESTNAS: 192.168.0.0/24
Missing: 192.168.100.0/24 (VLAN100/PBX) - requires Dataforth WiFi or adding route to pfSense-2

Files Modified

/etc/NetworkManager/conf.d/dns.conf (created)
/etc/udev/rules.d/backlight.rules (created)
/etc/fstab (modified /home mount)
/home/guru/ClaudeTools/credentials.md (added ESXi .122, .124, PBX entries)
PBX: /var/www/html/admin/modules/core/functions.inc/drivers/PJSip.class.php (patched line 504)
PBX: /etc/asterisk/logger_logfiles_custom.conf (created, added full log)

Pending/Incomplete Tasks (from earlier session)

Reboot required for /home mount DONE - rebooted, ext4 /home active
PBX call testing - users should verify DIDs, transfers, and general calling work
PBX VLAN100 routing - not accessible via Tailscale, need to add 192.168.100.0/24 to pfSense-2's advertised routes
ESXi license reminder - both hosts expire 2026-05-18 (60 days)
PBX auto-start - verify Asterisk starts automatically on VM boot to prevent future outages
fail2ban logs - 70MB/day suggests external SIP scanning; may want to review firewall rules
~~Windows reinstall script~~ FOUND at bootstrap/bootstrap.ps1 on Windows backup drive
PJSip.class.php patch - will be overwritten on FreePBX module update; monitor for upstream fix

Update: 18:30 - Autostart Apps, ScreenConnect, Forum Post, Flarum Theme, Node.js

Session Summary

Continued CachyOS workstation setup: configured autostart apps, installed/fixed ScreenConnect for Wayland, recovered files from old btrfs home, created and published a forum post on the community forum, styled the Flarum forum, disabled Cloudflare proxy for community/radio subdomains, installed Node.js, and located the Windows bootstrap script.

9. Autostart Applications Configured

Added to ~/.config/autostart/:

discord.desktop - starts minimized (--start-minimized)
tailscale-systray.desktop - copied from /usr/share/applications/
connectwisecontrol-1912bf3444b41a08.desktop - ScreenConnect client

Tailscale was already enabled via systemd (tailscaled.service).

10. ScreenConnect Fix for Arch Linux + Wayland

Installation: Already installed at ~/.local/share/applications/connectwisecontrol-1912bf3444b41a08/

Three issues fixed:

Installer needs dpkg - sudo pacman -S dpkg (already installed)
Java headless lacks GUI - sudo pacman -S --ask 4 jre-openjdk (already installed)

Wayland incompatibility - Applied fix:

sed -i '1a export GDK_BACKEND=x11\nexport _JAVA_AWT_WM_NONREPARENTING=1' \
  ~/.local/share/applications/connectwisecontrol-1912bf3444b41a08/ClientLauncher.sh

Documented in: docs/forum-posts/screenconnect-linux-wayland-fix.md

11. Old Home Recovery (btrfs @home subvolume)

Mount: sudo mount -o subvol=@home UUID=8a8b1d34-99fb-470f-82ca-b5d08e43ec32 /mnt/old-home
Recovered files:
- docs/forum-posts/ (6 files: arch-linux-ext4, cachyos-tailscale-fix, esxi8-evaluation-license-reset, freepbx17-pjsip-trunk-name-reload-fix, kde-plasma-brightness-nvidia-intel-fix, tailscale-missing-vlan-subnet-route)
- session-logs/2026-03-19-session.md (today's earlier session)
- docs/forum-posts/screenconnect-linux-wayland-fix.md (already copied earlier)
Old home still mounted at /mnt/old-home

12. Community Forum Setup & Post

Platform: Flarum 1.8.14 at https://community.azcomputerguru.com

Server: IX (172.16.3.10), cPanel account azcomputerguru
Document Root: /home/azcomputerguru/public_html/community/public
Database: azcompu_flarum / azcompu_flarum / Fl@rum2026!CGS (localhost on IX)

Admin user renamed: admin → MikeSwanson (ID 1, email mike@azcomputerguru.com)

API Key created: 581b6c8c162a383ba87757f41b4381e9bf8db61d71bd578ee97fe32b7aeac046 (admin, user ID 1)

Forum post created:

URL: https://community.azcomputerguru.com/d/6-fix-connectwise-screenconnect-on-arch-linux-wayland-3-issues-3-fixes
Tag: How-Tos & Tips (ID 7)
Author: MikeSwanson
Content properly formatted through Flarum's s9e TextFormatter
Links to Lawrence Systems forums, Manjaro forums, ConnectWise forums, kelderek GitHub PKGBUILD

Flarum posting workflow (Cloudflare blocks REST API):

Write PHP script that uses Flarum's $formatter->parse() for proper XML formatting
SCP script + JSON payload to IX server /tmp/
Execute via php /tmp/script.php over SSH
Clean up temp files

13. Cloudflare DNS Changes

Disabled proxy (orange cloud → grey cloud) for both subdomains:

community.azcomputerguru.com - Record ID: a1d406f701d30957784fdb1cb1662748
radio.azcomputerguru.com - Record ID: a7b1605203f9a72e146d7b290e840c45

Zone ID: 1beb9917c22b54be32e5215df2c227ce API Token (DNS): DRRGkHS33pxAUjQfRDzDeVPtt6wwUU6FwtXqOzNj

14. Flarum SEO & Theme

SEO Extension: v17development/flarum-seo v1.8.1 installed via composer (enabled in DB but OG tags not injecting properly - may need debugging)

Manual SEO implemented:

Custom header HTML with OG tags, Twitter card, robots directive
Dynamic JS that sets per-page og:title, og:description, og:url from Flarum's JSON payload
sitemap.xml generated at /home/azcomputerguru/public_html/community/public/sitemap.xml
robots.txt created at /home/azcomputerguru/public_html/community/public/robots.txt
.htaccess updated with exceptions for sitemap.xml and robots.txt

Custom theme applied:

Font: Lexend (matching azcomputerguru.com) + JetBrains Mono for code
Colors: Dark navy base (#111b27), orange accent (#fe7400), navy cards (rgba(20,40,65,0.55))
Design: Glass-morphism cards, orange-bordered code blocks, smooth hover animations, custom scrollbar
Stored in: Flarum custom_less setting in database
Contrast fixes applied after initial deployment was too dark

15. Node.js Installed

sudo pacman -S --noconfirm nodejs npm
Node.js 25.8.1, npm included
Needed for Playwright MCP and npx-based MCP servers

16. Claude Chrome Extension

Extension ID: fcoeoabgfenejglbffodgkkbkcdhcgfn (official, from Chrome Web Store)
Initial error: "Authorization failed - Redirect URI not supported by client"
Fix: Clear extension data from chrome://extensions/ → Details → Clear data
Status: Working after clearing data

17. Windows Bootstrap Script Found

Located at: /run/media/guru/New Volume/Data/2026-03-18/ACG-M-L5090/PUBLIC/archive/AdditionalFolders/Data/D/ClaudeTools/bootstrap/

bootstrap.ps1 (810 lines) - 9-phase Windows setup script
README.md - comprehensive guide
Installs: Git, Node.js, Python 3.13, Ollama, Claude Code CLI, GrepAI, MCP servers
Has archive mode for pre-reinstall backup
Not yet copied to current repo

Windows .mcp.json had: GitHub, Filesystem, Sequential Thinking, GrepAI, Ollama Assistant No Playwright/browser MCP was configured on Windows

Credentials (this session)

Flarum Forum (community.azcomputerguru.com)

DB Host: localhost (on IX server 172.16.3.10)
Database: azcompu_flarum
DB User: azcompu_flarum
DB Password: Fl@rum2026!CGS
API Key: 581b6c8c162a383ba87757f41b4381e9bf8db61d71bd578ee97fe32b7aeac046
Admin User: MikeSwanson (ID 1) / mike@azcomputerguru.com
Admin Password: (set during Flarum install, not changed this session)

Cloudflare

Zone ID (azcomputerguru.com): 1beb9917c22b54be32e5215df2c227ce
API Token (DNS): DRRGkHS33pxAUjQfRDzDeVPtt6wwUU6FwtXqOzNj
Note: Token only has DNS permissions, not zone settings/WAF

IX Server SSH (from this machine)

Must use: sshpass -p 'Gptf*77ttb!@#!@#' ssh -o StrictHostKeyChecking=no -o PubkeyAuthentication=no root@172.16.3.10
No SSH key auth configured for this CachyOS workstation yet

Files Created/Modified

~/.config/autostart/discord.desktop (created)
~/.config/autostart/tailscale-systray.desktop (copied)
~/.config/autostart/connectwisecontrol-1912bf3444b41a08.desktop (copied)
~/.local/share/applications/connectwisecontrol-1912bf3444b41a08/ClientLauncher.sh (patched for Wayland)
docs/forum-posts/screenconnect-linux-wayland-fix.md (refined)
docs/forum-posts/ (6 files recovered from old home)
session-logs/2026-03-19-session.md (this file, appended)
IX: /home/azcomputerguru/public_html/community/public/.htaccess (added sitemap/robots exceptions)
IX: /home/azcomputerguru/public_html/community/public/sitemap.xml (created)
IX: /home/azcomputerguru/public_html/community/public/robots.txt (created)
IX: Flarum DB settings: custom_less, custom_header, theme_primary_color, forum_description, extensions_enabled

Memory Files Created

~/.claude/projects/-home-guru-ClaudeTools/memory/MEMORY.md (index)
~/.claude/projects/-home-guru-ClaudeTools/memory/reference_community_forum.md
~/.claude/projects/-home-guru-ClaudeTools/memory/reference_radio_website.md
~/.claude/projects/-home-guru-ClaudeTools/memory/reference_ix_server_ssh.md
~/.claude/projects/-home-guru-ClaudeTools/memory/reference_workstation_setup.md

Pending/Incomplete Tasks

Playwright MCP setup - Node.js installed, ready to configure in .mcp.json
Copy bootstrap directory from Windows backup to current repo
Create Linux bootstrap equivalent of the Windows bootstrap.ps1
SSH key auth for IX server - currently using sshpass, should add this machine's key
Flarum SEO extension - installed but not generating per-page OG tags; may need config via admin panel
Flarum theme contrast - fixed once, verify it's readable
Old home still mounted at /mnt/old-home - can unmount when no longer needed
Cloudflare full-access token - user mentioned one exists in credentials but current tokens only have DNS permissions
Deleted discussion #5 exists in DB (orphaned from first failed post attempt) - cosmetic only
Forum tag discussion_count shows 2 for How-Tos & Tips (should be 1) due to deleted discussion

15 KiB Raw Blame History

Session Log: 2026-03-19

Session Summary

Work Completed

1. Tailscale Validation & Fix

2. Google Chrome Installation

3. Display Brightness Fix

4. Secondary Drive Setup as /home

5. ESXi License Resets (Dataforth)

6. FreePBX/Asterisk Phone System Fix (Dataforth)

Issues Found & Fixed:

PBX Status After Fix:

7. Packages Installed

8. Sudo Configuration

Credentials

ESXi Host 1 (192.168.0.122)

ESXi Host 2 (192.168.0.124)

PBX (192.168.100.2)

Existing (used this session)

Infrastructure Details

Workstation: acg-guru-5070

Tailscale Subnet Routes

Files Modified

Pending/Incomplete Tasks (from earlier session)

Update: 18:30 - Autostart Apps, ScreenConnect, Forum Post, Flarum Theme, Node.js

Session Summary

9. Autostart Applications Configured

10. ScreenConnect Fix for Arch Linux + Wayland

11. Old Home Recovery (btrfs @home subvolume)

12. Community Forum Setup & Post

13. Cloudflare DNS Changes

14. Flarum SEO & Theme

15. Node.js Installed

16. Claude Chrome Extension

17. Windows Bootstrap Script Found

Credentials (this session)

Flarum Forum (community.azcomputerguru.com)

Cloudflare

IX Server SSH (from this machine)

Files Created/Modified

Memory Files Created

Pending/Incomplete Tasks

15 KiB

Raw Blame History