[kamailio/kamailio] TLS module: different TLS parameters based on domain names for server role (#1570)
20 Jun
2018
20 Jun
'18
4:23 p.m.
Sorry for not being specific in [#1567](https://github.com/kamailio/kamailio/issues/1567).
I had to clarify that I was talking about server role only.
From what I understood server role configurations can
be distinguish one from another only by socket, provided in their configuration. TLS
module documentation says:
"... different TLS parameters can be specified on
a per role (server or client) and domain basis (for now only IPs)".
Which hints that additional tests for matching incoming connections against configured
server profiles were in mind. I would like to request a feature which could allow matching
them against domain name if that's possible.
One of the options may be checking client's certificate CN if _require_certificate_
parameter is set to yes.
Thank you!
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/1570
20 Jun
20 Jun
8:07 p.m.
Closed #1570.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/1570#event-1691731848
8:07 p.m.
`server_name` is matched for servers, have you tried? If yes and not matching, reopen and
attach all debug/log messages printed by kamailio with debug=3 in kamailio.cfg.
I will look at the docs and update where it is the case, if you search for server_name,
there are notes that it is matched, but some parts might be outdated in this aspect.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/1570#issuecomment-398825533
2348
days inactive
2348
days old
2 comments
2 participants
participants (2)
-
Daniel-Constantin Mierla -
VolodyaIvanets