Forum Rules
Our Rules: Read to avoid getting banned!
Advertising
Introduce Yourself to the World with Us!
Resource Database
Find the newest resources around IPTV!
Account upgrade
Upgrade your account to unlock more benefits!
Resource CK Mods v41 Mod 41
- Thread starter cesarkrespo
- Start date
- Status
Code:
sudo apt-get update
sudo apt-get install software-properties-common
sudo add-apt-repository universe
sudo add-apt-repository ppa:certbot/certbot
sudo apt-get update
sudo apt-get install certbot
-generate your ssl certificate with lets encrypt certbot,
Code: Select all
STOP ngnix >>>>>>THEN>>>>>>>VVVVVV
sudo certbot certonly --standalone --preferred-challenges http -d yourdomain.com
- Congratulations! Your certificate and chain (ssl cert bundle) have been saved at:
/etc/letsencrypt/live/yourdomain.com/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/yourdomain.com/privkey.pem
not: certbot creates a cronjob to renew the certificate. you don't have to worry about it.
>>>>>>>>>>>>>>>>start ngnix
########################
ngnix example :
user xtreamcodes;
worker_processes auto;
worker_rlimit_nofile 300000;
events {
worker_connections 16000;
use epoll;
accept_mutex on;
multi_accept on;
}
thread_pool pool_xtream threads=32 max_queue=0;
http {
include mime.types;
default_type application/octet-stream;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
reset_timedout_connection on;
gzip off;
fastcgi_read_timeout 200;
access_log /home/xtreamcodes/iptv_xtream_codes/logs/access.log;
keepalive_timeout 10;
include balance.conf;
send_timeout 20m;
sendfile_max_chunk 512k;
lingering_close off;
aio threads=pool_xtream;
client_body_timeout 13s;
client_header_timeout 13s;
client_max_body_size 3m;
limit_req_zone $binary_remote_addr zone=one:30m rate=20r/s;
#this part is broadcast port without ssl as default.
server {
listen 25461;
index index.php index.html index.htm;
root /home/xtreamcodes/iptv_xtream_codes/wwwdir/;
server_name yourdomain.com;
server_tokens off;
chunked_transfer_encoding off;
if ( $request_method !~ ^(GET|POST)$ ) {
return 200;
}
rewrite_log on;
rewrite ^/live/(.*)/(.*)/(.*)\.(.*)$ /streaming/clients_live.php?username=$1&password=$2&stream=$3&extension=$4 break;
rewrite ^/movie/(.*)/(.*)/(.*)$ /streaming/clients_movie.php?username=$1&password=$2&stream=$3&type=movie break;
rewrite ^/series/(.*)/(.*)/(.*)$ /streaming/clients_movie.php?username=$1&password=$2&stream=$3&type=series break;
rewrite ^/(.*)/(.*)/(.*).ch$ /streaming/clients_live.php?username=$1&password=$2&stream=$3&extension=ts break;
rewrite ^/(.*)\.ch$ /streaming/clients_live.php?extension=ts&stream=$1&qs=$query_string break;
rewrite ^/ch(.*)\.m3u8$ /streaming/clients_live.php?extension=m3u8&stream=$1&qs=$query_string break;
rewrite ^/hls/(.*)/(.*)/(.*)/(.*)/(.*)$ /streaming/clients_live.php?extension=m3u8&username=$1&password=$2&stream=$3&type=hls&segment=$5&token=$4 break;
rewrite ^/hlsr/(.*)/(.*)/(.*)/(.*)/(.*)/(.*)$ /streaming/clients_live.php?token=$1&username=$2&password=$3&segment=$6&stream=$4&key_seg=$5 break;
rewrite ^/timeshift/(.*)/(.*)/(.*)/(.*)/(.*)\.(.*)$ /streaming/timeshift.php?username=$1&password=$2&stream=$5&extension=$6&duration=$3&start=$4 break;
rewrite ^/timeshifts/(.*)/(.*)/(.*)/(.*)/(.*)\.(.*)$ /streaming/timeshift.php?username=$1&password=$2&stream=$4&extension=$6&duration=$3&start=$5 break;
rewrite ^/(.*)/(.*)/(\d+)$ /streaming/clients_live.php?username=$1&password=$2&stream=$3&extension=ts break;
#add pvr support
rewrite ^/server/load.php$ /portal.php break;
location /stalker_portal/c {
alias /home/xtreamcodes/iptv_xtream_codes/wwwdir/c;
}
#FFmpeg Report Progress
location = /progress.php {
allow 127.0.0.1;
deny all;
fastcgi_pass php;
include fastcgi_params;
fastcgi_ignore_client_abort on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
location ~ \.php$ {
limit_req zone=one burst=8;
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass php;
include fastcgi_params;
fastcgi_buffering on;
fastcgi_buffers 96 32k;
fastcgi_buffer_size 32k;
fastcgi_max_temp_file_size 0;
fastcgi_keep_conn on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}
#this part for broadcast port with ssl
server {
listen 25463 ssl;
ssl_certificate /etc/letsencrypt/live/sa.magnetukas.lt/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/sa.magnetukas.lt/privkey.pem;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
# wget --no-check-certificate "https://ssl-config.mozilla.org/ffdhe2048.txt" -O /home/xtreamcodes/iptv_xtream_codes/nginx/conf/dhparam.pem
ssl_dhparam dhparam.pem;
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
ssl_prefer_server_ciphers on;
ssl_ecdh_curve auto;
ssl_session_timeout 10m;
ssl_session_cache shared:MozSSL:10m;
ssl_session_tickets off;
ssl_stapling on;
ssl_stapling_verify on;
resolver 1.1.1.1 1.0.0.1 valid=300s;
resolver_timeout 5s;
error_page 497 https://$host:25463$request_uri;
index index.php index.html index.htm;
root /home/xtreamcodes/iptv_xtream_codes/wwwdir/;
server_name yourdomain.com;
server_tokens off;
chunked_transfer_encoding off;
if ( $request_method !~ ^(GET|POST)$ ) {
return 200;
}
rewrite_log on;
rewrite ^/live/(.*)/(.*)/(.*)\.(.*)$ /streaming/clients_live.php?username=$1&password=$2&stream=$3&extension=$4 break;
rewrite ^/movie/(.*)/(.*)/(.*)$ /streaming/clients_movie.php?username=$1&password=$2&stream=$3&type=movie break;
rewrite ^/series/(.*)/(.*)/(.*)$ /streaming/clients_movie.php?username=$1&password=$2&stream=$3&type=series break;
rewrite ^/(.*)/(.*)/(.*).ch$ /streaming/clients_live.php?username=$1&password=$2&stream=$3&extension=ts break;
rewrite ^/(.*)\.ch$ /streaming/clients_live.php?extension=ts&stream=$1&qs=$query_string break;
rewrite ^/ch(.*)\.m3u8$ /streaming/clients_live.php?extension=m3u8&stream=$1&qs=$query_string break;
rewrite ^/hls/(.*)/(.*)/(.*)/(.*)/(.*)$ /streaming/clients_live.php?extension=m3u8&username=$1&password=$2&stream=$3&type=hls&segment=$5&token=$4 break;
rewrite ^/hlsr/(.*)/(.*)/(.*)/(.*)/(.*)/(.*)$ /streaming/clients_live.php?token=$1&username=$2&password=$3&segment=$6&stream=$4&key_seg=$5 break;
rewrite ^/timeshift/(.*)/(.*)/(.*)/(.*)/(.*)\.(.*)$ /streaming/timeshift.php?username=$1&password=$2&stream=$5&extension=$6&duration=$3&start=$4 break;
rewrite ^/timeshifts/(.*)/(.*)/(.*)/(.*)/(.*)\.(.*)$ /streaming/timeshift.php?username=$1&password=$2&stream=$4&extension=$6&duration=$3&start=$5 break;
rewrite ^/(.*)/(.*)/(\d+)$ /streaming/clients_live.php?username=$1&password=$2&stream=$3&extension=ts break;
#add pvr support
rewrite ^/server/load.php$ /portal.php break;
location /stalker_portal/c {
alias /home/xtreamcodes/iptv_xtream_codes/wwwdir/c;
}
#FFmpeg Report Progress
location = /progress.php {
allow 127.0.0.1;
deny all;
fastcgi_pass php;
include fastcgi_params;
fastcgi_ignore_client_abort on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
location ~ \.php$ {
limit_req zone=one burst=8;
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass php;
include fastcgi_params;
fastcgi_buffering on;
fastcgi_buffers 96 32k;
fastcgi_buffer_size 32k;
fastcgi_max_temp_file_size 0;
fastcgi_keep_conn on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}
#this part is admin panel port without ssl as default
server {
listen 25500;
index index.php index.html index.htm;
root /home/xtreamcodes/iptv_xtream_codes/admin/;
server_name yourdomain.com;
location ~ \.php$ {
limit_req zone=one burst=8;
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass php;
include fastcgi_params;
fastcgi_buffering on;
fastcgi_buffers 96 32k;
fastcgi_buffer_size 32k;
fastcgi_max_temp_file_size 0;
fastcgi_keep_conn on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}
#you can use port 80 or you can delete port 80 redirect, it is up to you.
server {
listen 80;
server_name yourdomain.com;
return 301 https://$host$request_uri;
#return 301 https://$host:$server_port$request_uri; #you can redirect an http port to https with same port
#return 301 https://$host:your_https_port$request_uri; #you can redirect any http port to an https port
}
#this part is admin panel port with ssl
#NOT- default nginx build of xc is old and doesn't support http2 and openssl 1.1.1d
server {
listen 443 ssl http2;
listen 25443 ssl http2;
ssl_certificate /etc/letsencrypt/live/yourdomain.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/yourdomain.com/privkey.pem;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
# wget --no-check-certificate "https://ssl-config.mozilla.org/ffdhe2048.txt" -O /home/xtreamcodes/iptv_xtream_codes/nginx/conf/dhparam.pem
ssl_dhparam dhparam.pem;
ssl_prefer_server_ciphers on;
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
# ssl_ecdh_curve auto;
ssl_session_timeout 10m;
ssl_session_cache shared:MozSSL:10m;
ssl_session_tickets off;
ssl_stapling on;
ssl_stapling_verify on;
resolver 1.1.1.1 1.0.0.1 valid=300s;
resolver_timeout 5s;
index index.php index.html index.htm;
root /home/xtreamcodes/iptv_xtream_codes/admin/;
server_name yourdomain.com;
error_page 497 https://$host:$server_port$request_uri;
location ~ \.php$ {
limit_req zone=one burst=8;
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass php;
include fastcgi_params;
fastcgi_buffering on;
fastcgi_buffers 96 32k;
fastcgi_buffer_size 32k;
fastcgi_max_temp_file_size 0;
fastcgi_keep_conn on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}
}after changes allways reload ngnix
******ssl_dhparam dhparam.pem; first download file # wget --no-check-certificate . . . .. . .
Last edited by a moderator:
Thanks #cesarkrespo for the good work !
I recently installed my firs LB, but times for times it gets offline for a while and then comes back again
In offline period I can still connect trough ssh to LB but on main server It's showing as offline
Any suggestion ?
Thanks
I recently installed my firs LB, but times for times it gets offline for a while and then comes back again
In offline period I can still connect trough ssh to LB but on main server It's showing as offline
Any suggestion ?
Thanks
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
so whats function of http https dynamically update ? i can use http / https at same time?
function is encript playlists to end user and streaming urls, at same time you can use http and https but i recomend all http redirect to https
like:
server {
listen 8080;
server_name yourdomain;
return 301 https://$host$request_uri;
but in XC you have make certificates in LB and rewrite nginx.conf and in main db settings ON https = ["1"]
so I have use subdomain every on my LB server for certificate for full https
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
@cesarkrespo
Having issues with the ISP Name part, I followed your instructions and I added
server {
listen 80;
root /home/xtreamcodes/iptv_xtream_codes/isp/;
location / {
allow 127.0.0.1;
deny all;
}
location ~ \.php$ {
limit_req zone=one burst=8;
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass php;
include fastcgi_params;
fastcgi_buffering on;
fastcgi_buffers 96 32k;
fastcgi_buffer_size 32k;
fastcgi_max_temp_file_size 0;
fastcgi_keep_conn on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}
to the nginx.conf file (located here: /home/xtreamcodes/iptv_xtream_codes/nginx/conf/nginx.conf) before the last } as stated and then upload to the main server and nothing happens, no ISP details are displayed on the clients line details.
If I run the command /home/xtreamcodes/iptv_xtream_codes/start_services.sh to restart the service on the main server it gives the following error message
chown: changing ownership of '/home/xtreamcodes/iptv_xtream_codes/GeoLite2.mmdb' : Operation not permitted
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] still could not bind()
and then the main admin panel wont load, I have to remove the extra code in the nginx.conf file and then re-upload it as it was originally to get the panel working again.....
Any ideas or suggestions? All other parts of the mod seem to work just fine.
Cheers
Having issues with the ISP Name part, I followed your instructions and I added
server {
listen 80;
root /home/xtreamcodes/iptv_xtream_codes/isp/;
location / {
allow 127.0.0.1;
deny all;
}
location ~ \.php$ {
limit_req zone=one burst=8;
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass php;
include fastcgi_params;
fastcgi_buffering on;
fastcgi_buffers 96 32k;
fastcgi_buffer_size 32k;
fastcgi_max_temp_file_size 0;
fastcgi_keep_conn on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}
to the nginx.conf file (located here: /home/xtreamcodes/iptv_xtream_codes/nginx/conf/nginx.conf) before the last } as stated and then upload to the main server and nothing happens, no ISP details are displayed on the clients line details.
If I run the command /home/xtreamcodes/iptv_xtream_codes/start_services.sh to restart the service on the main server it gives the following error message
chown: changing ownership of '/home/xtreamcodes/iptv_xtream_codes/GeoLite2.mmdb' : Operation not permitted
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use)
nginx: [emerg] still could not bind()
and then the main admin panel wont load, I have to remove the extra code in the nginx.conf file and then re-upload it as it was originally to get the panel working again.....
Any ideas or suggestions? All other parts of the mod seem to work just fine.
Cheers
yes becouse you apache2 port using this change apache2 port to other one it will work ...
for the next mybe can be import or add like this for series
forexample if you want add mass import series
and the location struktur its like
/s01/E01/file.mkv
/s01/E02/file.mkv
/s01/E03/file.mkv
you cant import...
becouse it can be only import if the files in one folder
/s01/E01.mkv
/s01/E02.mkv
/s01/E03.mkv
it will be match nice if can be implanted or add this in futher
for example the struktur its for stalker vod and than can be used auchso same vod server for xtream for smal work other way must so match work
if same budy can modify this oprion will be so happy
kind regard
forexample if you want add mass import series
and the location struktur its like
/s01/E01/file.mkv
/s01/E02/file.mkv
/s01/E03/file.mkv
you cant import...
becouse it can be only import if the files in one folder
/s01/E01.mkv
/s01/E02.mkv
/s01/E03.mkv
it will be match nice if can be implanted or add this in futher
for example the struktur its for stalker vod and than can be used auchso same vod server for xtream for smal work other way must so match work
if same budy can modify this oprion will be so happy
kind regard
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
Thanks mate, sorted it now.... Never thought of apache, lol
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
nice work you make more Updates ?
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
summarizing:
restart, reboot, fast reload and full remake are fully functional. ISP works on port 9999 after obviously doing a full remake.
i also fixed install balancer
I made a change to balancer.py now acquires the public ip and not the local one, so that if the main is connected to a router or a nat, the right ip is taken. Furthermore, now both on fast reload and main full remake it is assigned as host in the config file 127.0.0.1
Update nginx and nginx_rtmp bin to 1.19.2 version
Last edited:
summarizing:
restart, reboot, fast reload and full remake are fully functional. ISP works on port 9999 after obviously doing a full remake.
i also fixed install balancer
I made a change to balancer.py now acquires the public ip and not the local one, so that if the main is connected to a router or a nat, the right ip is taken. Furthermore, now both on fast reload and main full remake it is assigned as host in the config file 127.0.0.1
where are the update files ?
I have to send them to CéSaR KrEsPo when they answer me
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
as if he's not interested anymore ( cesarkrespo ) it's been 1 month , I don't have much hope left
( jk-team ) you gave him good files
- Status
Similar threads
