From your FreePBX GUI go to Connectivity > Firewall > Network tab at the top
By default this will only show non-hidden trusted IPs. From the command line you can add in IPs that are hidden from the GUI so to truly see all IPs you need to paste at the end of the URL for the network tab
&showhidden=true
Example URL would be https://192.168.0.1/admin/config.php?display=firewall&page=about&tab=networks&showhidden=true
This will show you a list of all the IPs that are whitelisted on the firewall. Carefully review these and make sure you recognize all of the trusted IPs and subnets.
Remove any IPs that you are unsure of.
Move to Clearly Mirrors with all modules pinned to versions before Oct 1st 2020 release dates.
From your FreePBX 13 or newer system login as root to the Linux CLI. You can learn more about Clearly IP Mirrors for FreePBX based systems here
Run the below command and it should show you are currently using freepbx.org mirrrr
fwconsole setting MODULE_REPO
To Switch to Clearly IP Mirrors run the following command
We can now verify that the mirror servers have been changed by running the command from earlier again and we should see the Clearly IP mirrors now
fwconsole setting MODULE_REPO
Now that we have verified you are using the Clearly Mirror servers we want to pin the server to a special master version we have created that will only provide modules that were published before Oct 13th 2020 with the following command.