sr-users March 2004

sr-users@lists.kamailio.org

145 participants
286 discussions

RE: [Serusers] Question to the list for a Windows environment

by Roberto Hiribarne Guedes

sip auth is like http auth ... basic and diggest ... so the servers and clients support it if you use basic auth, in the server side you hace the plain password and you may check it against AD, for example ... using LDAP or Kerberos APIs ... but if you use diggest, I don't think you may do it ... Microsoft invented NTLM, and their clients and servers suported it ... (IIS and IE) Samba Proyect worked over ntlm auth and developed an auth module for squid ... clients that support ntlm can auth using ntlm ... domain, user, and password but you have to suport basic for clients that do not support ntlm (domain/user and pass)... such as every web client except IE ... ;-) I think it's the same for sip ... I don't know of a soft telephone suporting ntlm ... if you happened to know tell me. I am interested in more comments about solutions to integrate SIP in a Microsoft Active Directory environment, in matters of users. Robert. ________________________________ From: serusers-bounces(a)lists.iptel.org on behalf of Morris, Scott Sent: Tue 3/30/2004 4:38 PM To: 'serusers(a)lists.iptel.org' Subject: [Serusers] Question to the list for a Windows environment If you are running in a Windows Environment, how are you authenticating to the NT domain/ADS? Scott Morris Enterprise Network Engineer DOE - ORAU / ORISE 865-576-4672

20 years, 7 months

[Serusers] Beginner to SER, looking for good examples/advice

by Ryan Tucker

Greetings! I'm looking to SER to provide SIP proxy services. Generally speaking, I like what I see so far -- it seems generally solid, and full of nice, useful features. :-) Basically, here's what I'm hoping to do, and I haven't found a good example to start from yet. We have an Asterisk server which is handling most of our voice traffic, and we're perfectly happy with that. However, we have a few fax machines which need to use T.38, and are looking to deploy a somewhat more major service where a good database backend is going to be the thing to use. What we got thusfar is an AudioCodes Mediant 2000 (useful for T.38 stuff) and the Asterisk box itself, which talks to the PSTN. What we're looking to do is: Inbound calls to fax numbers: PSTN -> Asterisk -> Mediant -> SER -> Device Inbound calls to normal numbers: PSTN -> Asterisk -> SER -> Device Outbound calls from fax numbers: Device -> SER -> Mediant -> Asterisk -> PSTN Outbound calls from normal numbers: Device -> SER -> Asterisk -> PSTN Basically, I can get everything to do its part in this right now, 'cept for inbound calls... SER just sends those right back out to the Mediant, which results in a PRI signalling performance test. I've bumbled around with the config, but just haven't figured understood it yet. Does anyone have a good example of something along this lines I could start from? I figure that if I can get it working with just one gateway, I can get the second gateway going; just need to figure out how to get one gateway going ;-) I'd post my config, but I'm not sure I want my name attached to it at this point. *grin* Thanks! -rt -- Ryan Tucker Network Engineer ISP Direct, Inc. 1159 Pittsford-Victor Road, Suite 140 Pittsford, New York 14534 585-419-8200 www.netacc.net

20 years, 7 months

[Serusers] Question to the list for a Windows environment

by Morris, Scott

If you are running in a Windows Environment, how are you authenticating to the NT domain/ADS? Scott Morris Enterprise Network Engineer DOE - ORAU / ORISE 865-576-4672

20 years, 7 months

RE: [Serusers] radius issue

by Morris, Scott

To the group - any experiences with Microsoft's IAS server, whether it supports digest authentication? In reference to the dumps, I'll provide. Thanks. Scott Morris Enterprise Network Engineer DOE - ORAU / ORISE 865-576-4672 -----Original Message----- From: Jan Janak [mailto:jan@iptel.org] Sent: Tuesday, March 30, 2004 8:02 AM To: Morris, Scott Cc: serusers(a)lists.iptel.org Subject: Re: [Serusers] radius issue On 30-03 07:56, Morris, Scott wrote: > I am using the Microsoft radius server, but it isn't getting that far > yet. I asked our MS sysadmin, and he is not seeing anythin in the > logs. Does it support digest authentication ? If not then you are probably wasting your time. > I didn't provide enough info below as I thought I did. The client I > am using is MS Messenger 4.7. When I start SER on the server, it > shows listening for the following: > > Listening on > 127.0.0.1 [127.0.0.1]:5060 > 10.0.2.1 [10.0.2.1]:5060 > Aliases: comm01.orau.gov:5060 localhost:5060 > localhost.localdomain:5060 comm01:5060 > > I did a capture using ethereal, and what comes back is an icmp packet, > which usually indicates SER is not running. But, ps shows instances > of SER running. > > Do you see any issues with the ser.cfg file? We really need to see the dumps. Jan.

20 years, 7 months

[Serusers] ss7 solutions

by Matt Hess

Does anyone here employ a SS7 / LIS gateway system with SER that would mind sharing information regarding their setup and what they used etc.. ?

20 years, 7 months

Re: [Serusers] does click_to_dial sample work

by wangji

Hi all, I use the 0.8.12 tar.gz packet from ftp server. Since it works fine after I change a little. so I don't want to use that newest version from CVS server. Can I use the newer version click_to_dial version with eldder SER server? If not, what should I do to imply the function. Jimmy ----- Original Message ----- From: "Jiri Kuthan" <jiri(a)iptel.org> To: "Íõ¼Ì" <wangji(a)bjpu.edu.cn>; <serusers(a)iptel.org> Sent: Tuesday, March 30, 2004 9:19 PM Subject: Re: [Serusers] does click_to_dial sample work At 09:05 AM 3/30/2004, Íõ¼Ì wrote: >Hi all, > I want to try click_to_dial use apache+php on linux and client on windows. I >see that click_to_dial sample but it says "Unfortunately, this example does not >work". But in mail list I checked some one said it does work. Where did you find the comment? It should disapper, since it works. -jiri > If it works, where can I find some documents that intruducing how to implement. >If not, is there anyothere things usable I can find one the web. > > >Regards, > >Jimmmy > > >_______________________________________________ >Serusers mailing list >Serusers(a)iptel.org >http://mail.iptel.org/mailman/listinfo/serusers -- Jiri Kuthan http://iptel.org/~jiri/ _______________________________________________ Serusers mailing list Serusers(a)iptel.org http://mail.iptel.org/mailman/listinfo/serusers

20 years, 7 months

[Serusers] problems with snmp Modul for ser

by Stefan Wagner

Hi, I have installed the snmp modul for ser, ser started in debug mode: .... 0(25682) snmp_mod: snmp being initialized... 0(25682) snmp_mod: Initializing internal variables 0(25682) snmp_mod: Initializing snmp 0(25682) snmp_mod: Running as agentx subagent 0(25682) snmp_mod: Initializing dynamic handler 0(25682) snmp_mod: Filling SNMP tree 0(25682) SNMP module initialized .... ... The problem is that there are no values in SIP Mibs. I use mbrowser to take a look at the mibs. How can I test if the subagent is really running ? Has anybody experiences with this modul ? Thanks in advance Stefan

20 years, 7 months

[Serusers] symmetric signaling / windows messenger

by Graham Turner

am attempting to negotiate the issues of NAT traversal with Windows messenger (4.7) as the SIP user agent seems support for symmetric signaling is prerequisite to this - documentation seems to suggest that Windows messenger (version not documented) supports symmetric signaling. would therefore be expecting SIP data to be initiated from port 5060 - this is not the observed behaviour as i see data initiated from UDP port 1895 with the "contact" header being populated with the port number 16895 does the symmetric signaling need to be explicity enabled (and if so how) for versions of windows messenger ?? GT

20 years, 7 months

[Serusers] does click_to_dial sample work

by ��

Hi all, I want to try click_to_dial use apache+php on linux and client on windows. I see that click_to_dial sample but it says "Unfortunately, this example does not work". But in mail list I checked some one said it does work. If it works, where can I find some documents that intruducing how to implement. If not, is there anyothere things usable I can find one the web. Regards, Jimmmy

20 years, 7 months

RE: [Serusers] radius issue

by Morris, Scott

I am using the Microsoft radius server, but it isn't getting that far yet. I asked our MS sysadmin, and he is not seeing anythin in the logs. I didn't provide enough info below as I thought I did. The client I am using is MS Messenger 4.7. When I start SER on the server, it shows listening for the following: Listening on 127.0.0.1 [127.0.0.1]:5060 10.0.2.1 [10.0.2.1]:5060 Aliases: comm01.orau.gov:5060 localhost:5060 localhost.localdomain:5060 comm01:5060 I did a capture using ethereal, and what comes back is an icmp packet, which usually indicates SER is not running. But, ps shows instances of SER running. Do you see any issues with the ser.cfg file? Scott Morris Enterprise Network Engineer DOE - ORAU / ORISE 865-576-4672 -----Original Message----- From: Daniel-Constantin Mierla [mailto:daniel@iptel.org] Sent: Tuesday, March 30, 2004 4:19 AM To: Morris, Scott Cc: serusers(a)lists.iptel.org Subject: Re: [Serusers] radius issue Have you followed http://iptel.org/ser/doc/ser_radius/ser_radius.html? What radius server are you using? .Daniel On 03/30/04 00:08, Morris, Scott wrote: > Present Configuration OS - Redhat ES 3 > SER - 8.12 (installed from rpm) > SER radius (installed from rpm) > radius client - 3.25 i586 - > installed from rpmfind.net > > SER starts, but I receive the message that my signin failed because > the service is not running. SER is running, I id a ps and it show > sintances of SER running. I beleive it is my ser.cfg file. I am not > sure where authhentication configuration items begin and end with what > I am doing. I am not using mysql, but want to use radius > authentication. I have my ser.cfg below. > > > *Scott Morris* > Enterprise Network Engineer > DOE - ORAU / ORISE > 865-576-4672 > > > > # > # $Id: ser.cfg,v 1.21.4.1 2003/11/10 15:35:15 andrei Exp $ > # > # simple quick-start config script > # > > # ----------- global configuration parameters > ------------------------ > > #debug=3 # debug level (cmd line: -dddddddddd) > #fork=yes > #log_stderror=no # (cmd line: -E) > > /* Uncomment these lines to enter debugging mode > debug=7 > fork=no > log_stderror=yes > */ > debug=7 > # fork=no > # log_stderror=yes > > > > > check_via=no # (cmd. line: -v) > dns=no # (cmd. line: -r) > rev_dns=no # (cmd. line: -R) > port=5060 > children=4 > fifo="/tmp/ser_fifo" > # alias=orau.gov > > > # ------------------ module loading > ---------------------------------- > > # Uncomment this if you want to use SQL database > #loadmodule "/usr/lib/ser/modules/mysql.so" > > loadmodule "/usr/lib/ser/modules/sl.so" > loadmodule "/usr/lib/ser/modules/tm.so" > loadmodule "/usr/lib/ser/modules/rr.so" > loadmodule "/usr/lib/ser/modules/maxfwd.so" > loadmodule "/usr/lib/ser/modules/usrloc.so" > loadmodule "/usr/lib/ser/modules/registrar.so" > > # Uncomment this if you want digest authentication > # mysql.so must be loaded ! > #loadmodule "/usr/lib/ser/modules/auth.so" > #loadmodule "/usr/lib/ser/modules/auth_db.so" > loadmodule "/usr/lib/ser/modules/auth.so" > loadmodule "/usr/lib/ser/modules/auth_db.so" > loadmodule "/usr/lib/ser/modules/auth_radius.so" > # ----------------- setting module-specific parameters > --------------- > > # -- usrloc params -- > > modparam("usrloc", "db_mode", 0) > > # Uncomment this if you want to use SQL database > # for persistent storage and comment the previous line > #modparam("usrloc", "db_mode", 2) > > # -- auth params -- > # Uncomment if you are using auth module > # > modparam("auth_db", "calculate_ha1", yes) > # > # If you set "calculate_ha1" parameter to yes (which true in this > config), > # uncomment also the following parameter) > # > modparam("auth_db", "password_column", "password") > > # -- rr params -- > # add value to ;lr param to make some broken UAs happy > modparam("rr", "enable_full_lr", 1) > > # --auth_radius params > modparam("auth_radius", "radius_config", > "/etc/radiusclient/radiusclient.conf") > modparam("auth_radius", "service_type", 15) > # ------------------------- request routing logic > ------------------- > > # main routing logic > > route{ > > # initial sanity checks -- messages with > # max_forwards==0, or excessively long requests > if (!mf_process_maxfwd_header("10")) { > sl_send_reply("483","Too Many Hops"); > break; > }; > if ( msg:len > max_len ) { > sl_send_reply("513", "Message too big"); > break; > }; > > # we record-route all messages -- to make sure that > # subsequent messages will go through our proxy; that's > # particularly good if upstream and downstream entities > # use different transport protocol > record_route(); > # loose-route processing > if (loose_route()) { > t_relay(); > break; > }; > > # if the request is for other domain use UsrLoc > # (in case, it does not work, use the following command > # with proper names and addresses in it) > if (uri==myself) { > > if (method=="REGISTER") { > > # Uncomment this if you want to use digest authentication > if (!radius_www_authorize("iptel.org")) { > www_challenge("iptel.org", "0"); > > > break; > }; > > > > > save("location"); > break; > }; > > # native SIP destinations are handled using our > USRLOC DB > if (!lookup("location")) { > sl_send_reply("404", "Not Found"); > break; > }; > }; > # forward to current uri now; use stateful forwarding; that > # works reliably even if we forward from TCP to UDP > if (!t_relay()) { > sl_reply_error(); > }; > > } > > >----------------------------------------------------------------------- >- > >_______________________________________________ >Serusers mailing list >serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers >

20 years, 7 months

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

sr-users March 2004