sr-users April 2004

sr-users@lists.kamailio.org

138 participants
266 discussions

[Serusers] RADIUS between multiple domains + Fail Over Gateways

by Alan Litster

Hello List, I've been using SER with RADIUS successfully now for a few months and am very pleased with the result. It's used for authenticating users accessing our gateways. I know have a new requirement to extend this to provide authentication for remote domains. The setup being as follows. We've got SER running with FreeRADIUS, then at the remote sites we will have the same plus Asterisk that is to act as a local gateway. I've configured the local FreeRADIUS instance to proxy the requests for the remote SIP domains to the remote RADIUS server. Unfortunately this doesn't work and I'm not sure why. The SUA gets asked by the remote SIP proxy to authenticate, it then forwards the INVITE to the local SER instance which then gets the LOCAL RADIUS to do another auth. This doesn't work. However if I disable the local auth and leave the remote auth enabled it works fine. Has anyone successfully managed to get proxied radius auth to work? My other question is to do with getting SER to send the INVITE to a different gateway if the primary one is at capacity/out of action? Is there an example of this sort of config? Kind Regards, Alan ------------------------------------------------------------------------------------------------------- This email, and any files transmitted with it, is copyright and may contain confidential information. The contents are intended for the use of the addressee(s) only. Unauthorized use may be unlawful. If you receive this email by mistake, please advise sender immediately. The views of the author may not necessarily constitute the views of Telco Electronics Limited. Nothing in this mail shall bind Telco Electronics Limited in any contract or obligation. Telco Electronics Limited 6-8 Oxford Court Brackley Northants NN13 7XY Tel 07000 701999 Fax 07000 701777

20 years, 2 months

[Serusers] (no subject)

by Matt Hess

Is anyone working on a module to extend ser into a larger softswitch role like something for handling sigtran?

20 years, 2 months

[Serusers] ZyXEL ACK Problem.

by markus monka

It is a ZyXEL Phone connected to a ZyXEL Wlan Router. Sending INVITE INVITE => SER => ASTERISK ASTERISK send "Session Progress" everything is fine: ASTERISK sends "OK" Session starts. I can hear my Voice. After 6 Seconds Session breaks up. Something seems to be strange with the ACK the ZyXEL Phones sends: PHONE => PROXY ACK sip:0xxxxx@21.1.7.9 SIP/2.0 Via:SIP/2.0/UDP 21.28.17.18:5060;branch=z9hGddbkb8a7ca191bf4fd From:Zyxel<sip:1111111@domain.de;user=phone>;tag=C2E2D6CF845EA11AEBC2 To:<sip:0xxxxxxxxx@domain.de;user=phone>;tag=as4f89971f Call-ID:15482-E655-54C3-B488-1D32D8DF7653@21.28.17.18 CSeq:1 ACK User-Agent: ZyXEL P2000W VoIP Wi-Fi Phone Route:<sip:49xxxxx@21.1.7.8;ftag=C2E2D6CF845EA11AEBC2;lr=on>,<sip:492405690929@21.28.17.18:5060> When loggin with debug = 10 , i do not see some errors in syslog. The Gateway then sends 6 more "OK" and the terminate by sending "BYE". The Phone answers with "200 OK" .. ? Regards, Markus

20 years, 2 months

[Serusers] SER+SERWEB again!!!!

by gaillac harry

Hi all, I solved my problem SEND IM, missed calls, Voicemail. I do hope that could help somebody !!! However when I call an offline user1 he received a missed calls from user2 but user1 don't receive email notification in his mailbox although voicemail system answer the user2's call??? Harry --------------------------------------------------------- # native SIP destinations are handled using our USRLOC DB lookup("aliases"); if (!lookup("location")) { if (! t_newtran()) { sl_reply_error(); break; }; t_reply("100","Trying -- just wait a minute !"); if(method=="INVITE"){ acc_log_request("404 missed call\n"); acc_db_request("404 missed call", "missed_calls"); setflag(3); if(!vm("/tmp/am_fifo","voicemail")){ log("could not contact the answer machine\n"); t_reply("500","could not contact the answer machine"); }; if(method=="BYE" || method=="CANCEL"){ if(!vm("/tmp/am_fifo","bye")){ log("could not contact the answer machine\n"); t_reply("500","could not contact the answer machine"); }; }; break; }; # we do not care about anything else but MESSAGEs if (!method=="MESSAGE") { if (!t_reply("404", "Not found")) { sl_reply_error(); }; break; }; log("MESSAGE received -> storing using MSILO\n"); # MSILO - storing as offline message if (m_store("0")) { log("MSILO: offline message stored\n"); if (!t_reply("202", "Accepted")) { sl_reply_error(); }; }else{ log("MSILO: offline message NOT stored\n"); if (!t_reply("503", "Service Unavailable")) { sl_reply_error(); }; }; break; }; # if the downstream UA does not support MESSAGE requests # go to failure_route[1] t_on_failure("1"); t_relay(); break; }; # forward to current uri now; use stateful forwarding; that # works reliably even if we forward from TCP to UDP if (!t_relay()) { sl_reply_error(); }; } failure_route[1] { # forwarding failed -- check if the request was a MESSAGE if (!method=="MESSAGE") { break; }; log(1,"MSILO: the downstream UA does not support MESSAGE requests ...\n"); # we have changed the R-URI with the contact address -- ignore it now if (m_store("1")) { log("MSILO: offline message stored\n"); t_reply("202", "Accepted for delivery"); }else{ log("MSILO: offline message NOT stored\n"); t_reply("503", "Service Unavailable"); }; }

20 years, 2 months

[Serusers] IP to Domain mapping

by Kapil Dhawan

I have added a user with some domain as ip address and second with domain as domain name. They are not able to contact each other..... and how can i enable multiple domain..... regards _________________________________________________________________ Need quick cash? http://go.msnserver.com/IN/46923.asp Click here !

20 years, 2 months

[Serusers] What is the recommended Mysql version for ser 0.8.12

by steve

I have version mysql-3.23.58-1.9 installed but seem to remember a thread about a later version being more compatible with some of the functions in SER. Thanks in advance.. Regards, Steve ________________________________________________________________________ This message has been checked for all known viruses by the CitC Virus Scanning Service powered by SkyLabs. For further information visit http://www.citc.it ___

20 years, 2 months

Re: [Serusers] multiple domains and pstn

by gaillac harry

Hi, do you try pdt module for incoming call, does this module could work with sems isdngw plugin? Anybody could send us back an example ? Regards Le ven 30/04/2004 à 09:56, Richard a écrit : > Gaillac, > > I use the latest cvs. > > It has a rpid field. > > Richard > > --- gaillac harry <gaillacharry(a)yahoo.fr> wrote: > > Sorry not serweb but ser_mysql.sh. rpid field is not > > created into > > subscriber table from ser-0.8.12 stable with > > ser_mysql.sh > > > > Gaillac > > > > Le jeu 29/04/2004 19:30, Richard a crit : > > > I haven't tried serweb yet. So now only manually > > > update mysql database. > > > > > > --- gaillac harry <gaillacharry(a)yahoo.fr> wrote: > > > > Hi > > > > > > > > rpid field is not include in subscriber table > > from > > > > serweb-2004 tarball > > > > but CVS serweb . > > > > Which ser_mysql.sh serweb release have you > > installed > > > > ? > > > > > > > > I'm very interesting in your problem > > > > > > > > Gaillac harry > > > > > > > > Le jeu 29/04/2004 10:31, Richard a crit : > > > > > The rpid doesn't seem to be in the document. > > > > Anyway, I > > > > > dig into the source file. Here is what I > > found, > > > > rpid > > > > > is stored in ser database in mysql server. It > > is > > > > in > > > > > the subsriber table and rpid column. > > > > > > > > > > You need modparam("auth_db", "use_rpid", 1), > > > > because > > > > > the default value is 0 and not using rpid. > > > > > > > > > > Optional modparam("auth_db","rpid_column", > > > > "rpid"), > > > > > which is default. > > > > > > > > > > There are other params documented in the > > README > > > > file > > > > > in modules/auth directory. > > > > > > > > > > rpid is retrieved during proxy authentication. > > > > > > > > > > Function append_rpid_hf() adds the rpid value > > into > > > > the > > > > > header field "Remote-Party-ID". > > > > > > > > > > rpid doesn't have to be number only. It can be > > any > > > > > format. > > > > > > > > > > Here is an example, rpid columns has > > > > > "test" 8005551212 > > > > > > > > > > The header has a header > > > > > Remote-Party-ID: "test" > > > > > > > > > > > > > > > 8005551212;party=calling;id-type=subscriber;screen=yes > > > > > > > > > > It should give the caller name as test and id > > as > > > > > 8005551212, hopefully. ;) I should have a rpid > > > > capable > > > > > PSTN gateway next week and let you posted. > > > > > > > > > > Thanks, > > > > > Richard > > > > > > > > > > > > > > > > > > > > --- Richard <mypop3mail(a)yahoo.com> wrote: > > > > > > Think I got the answer for question 1. Use > > rpid > > > > > > stored > > > > > > in each subscriber in the database before > > > > forwarding > > > > > > the call to PSTN gateway. > > > > > > > > > > > > --- Richard <mypop3mail(a)yahoo.com> wrote: > > > > > > > Hi, > > > > > > > > > > > > > > I have a few questions about multiple > > domains > > > > and > > > > > > > call > > > > > > > from/to pstn. I don't want to change the > > > > ser.cfg > > > > > > > script everytime a new domain is added. > > How > > > > can I > > > > > > > support the following features? > > > > > > > > > > > > > > 1. Every domain has their own 3 or 4 digit > > > > dial > > > > > > > plan. > > > > > > > When they call PSTN, their caller id > > should be > > > > the > > > > > > > either a prefix plus their internal number > > or > > > > a > > > > > > > generic receptionist number, but not the > > 3/4 > > > > digit > > > > > > > internal number. Different domains have > > > > different > > > > > > > prefix. Is there a way to do this without > > > > changing > > > > > > > the > > > > > > > script for every domain? > > > > > > > > > > > > > > 2. Should interdomain calls be prohibited? > > Is > > > > it > > > > > > > preferred to send the call to PSTN and > > hairpin > > > > > > back? > > > > > > > I > > > > > > > know it consumes more resources but would > > it > > > > > > provide > > > > > > > better privacy? If that's the case, how to > > > > prevent > > > > > > > interdomain calls, i.e. how to verify from > > and > > > > to > > > > > > > URI > > > > > > > have the same host parts? > > > > > > > > > > > > > > 3. When PSTN calls come in, should I use > > > > > > > prefix2domain > > > > > > > in pdt module to convert the PSTN number > > to a > > > > > > local > > > > > > > domain number? Any pitfalls? > > > > > > > > > > > > > > This list has been great! Thanks for all > > your > > > > > > help. > > > > > > > > > > > > > > Best Regards, > > > > > > > Richard > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > __________________________________ > > > > > > > Do you Yahoo!? > > > > > > > Win a $20,000 Career Makeover at Yahoo! > > > > HotJobs > > > > > > > > > > > > > > > > > > > http://hotjobs.sweepstakes.yahoo.com/careermakeover > > > > > > > > > > > > > > > > > > _______________________________________________ > > > > > > > Serusers mailing list > > > > > > > serusers(a)lists.iptel.org > > > > > > > > > > > http://lists.iptel.org/mailman/listinfo/serusers > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > __________________________________ > > > > > > Do you Yahoo!? > > > > > > Win a $20,000 Career Makeover at Yahoo! > > HotJobs > > > > > > > > > > > > > > > > http://hotjobs.sweepstakes.yahoo.com/careermakeover > > > > > > > > > > > > > > _______________________________________________ > > > > > > Serusers mailing list > > > > > > serusers(a)lists.iptel.org > > > > > > > > http://lists.iptel.org/mailman/listinfo/serusers > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > __________________________________ > > > > > Do you Yahoo!? > > > === message truncated === > > > > > > __________________________________ > Do you Yahoo!? > Win a $20,000 Career Makeover at Yahoo! HotJobs > http://hotjobs.sweepstakes.yahoo.com/careermakeover

20 years, 2 months

[Serusers] Call Timeout ?

by Kannaiyan Natesan

Can I disconnect a call which is in progress through SER after a pre determined time? Kannaiyan

20 years, 2 months

[Serusers] multiple domains and pstn

by Richard

Hi, I have a few questions about multiple domains and call from/to pstn. I don't want to change the ser.cfg script everytime a new domain is added. How can I support the following features? 1. Every domain has their own 3 or 4 digit dial plan. When they call PSTN, their caller id should be the either a prefix plus their internal number or a generic receptionist number, but not the 3/4 digit internal number. Different domains have different prefix. Is there a way to do this without changing the script for every domain? 2. Should interdomain calls be prohibited? Is it preferred to send the call to PSTN and hairpin back? I know it consumes more resources but would it provide better privacy? If that's the case, how to prevent interdomain calls, i.e. how to verify from and to URI have the same host parts? 3. When PSTN calls come in, should I use prefix2domain in pdt module to convert the PSTN number to a local domain number? Any pitfalls? This list has been great! Thanks for all your help. Best Regards, Richard __________________________________ Do you Yahoo!? Win a $20,000 Career Makeover at Yahoo! HotJobs http://hotjobs.sweepstakes.yahoo.com/careermakeover

20 years, 2 months

Re: [Serusers] acc

by Andrey Pavlenko

Здравствуйте, Jan! On Tue, Apr 27, 2004 at 05:31:26PM +0200, Jan Janak wrote: > Could you try to compile the attached version of ser ? Sorry. The reason apeared in FreeBSD ports patches... :( > > Jan. > > On 27-04 18:33, Andrey Pavlenko wrote: > > > > ????????????, Jan! > > > > On Tue, Apr 27, 2004 at 05:09:12PM +0200, Jan Janak wrote: > > > > > > Do you use -DUSE_TCP when compiling ? I am pretty sure the latest > > > stable works, I've just tried. USE_TCP is normally defined in > > > Makefile.defs > > > > Of course. By default defined... > > > > DEFS+= $(extra_defs) \ > > -DNAME='"$(NAME)"' -DVERSION='"$(RELEASE)"' -DARCH='"$(ARCH)"' \ > > -DOS='"$(OS)"' -DCOMPILER='"$(CC_VER)"' -D__CPU_$(ARCH) -D__OS_$(OS) \ > > -DCFG_DIR='"$(cfg-target)"'\ > > -DPKG_MALLOC \ > > -DSHM_MEM -DSHM_MMAP \ > > -DDNS_IP_HACK \ > > -DUSE_IPV6 \ > > -DUSE_TCP \ > > -DDISABLE_NAGLE \ > > -DF_MALLOC \ > > > > > > > > > > Jan. > > > > > > On 27-04 17:24, Andrey Pavlenko wrote: > > > > > > > > ????????????, Jan! > > > > > > > > On Tue, Apr 27, 2004 at 02:14:14PM +0200, Jan Janak wrote: > > > > > > > > > > There was some problem with ser from FreeBSD ports, try to get the > > > > > source from the CVS (with -r rel_0_8_12 option). > > > > > > > > With cvs revision the same problem... :( > > > > > > > > > > > > > > > > > > > > > > Jan. > > > > > > > > > > On 27-04 13:32, Andrey Pavlenko wrote: > > > > > > > > > > > > Hi! > > > > > > > > > > > > I need enable radius accounting in the SER. > > > > > > But have problem after load module acc.so: > > > > > > > > > > > > 0(22487) DEBUG: init_mod: acc > > > > > > acc - initializing > > > > > > 0(22487) find_export: found <load_tm> in module tm [/usr/local/lib/ser/modules/tm.so] > > > > > > 0(22487) find_export: found <register_tmcb> in module tm [/usr/local/lib/ser/modules/tm.so] > > > > > > 0(22487) find_export: <t_relay_to_tcp> not found > > > > > > 0(22487) ERROR: tm_bind: TM module function 't_relay_to_tcp' not found > > > > > > 0(22487) init_mod(): Error while initializing module acc > > > > > > ERROR: error while initializing modules > > > > > > 0(22487) DEBUG: tm_shutdown : start > > > > > > 0(22487) DEBUG: tm_shutdown : empting DELETE list > > > > > > 0(22487) DEBUG: tm_shutdown : empting hash table > > > > > > 0(22487) DEBUG: tm_shutdown: releasing timers > > > > > > 0(22487) DEBUG: tm_shutdown : removing semaphores > > > > > > 0(22487) DEBUG: tm_shutdown : done > > > > > > 0(22487) shm_mem_destroy > > > > > > 0(22487) destroying the shared memory lock > > > > > > > > > > > > In the ser.cfg: > > > > > > loadmodule "/usr/local/lib/ser/modules/sl.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/tm.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/rr.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/maxfwd.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/usrloc.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/registrar.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/auth.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/auth_radius.so" > > > > > > loadmodule "/usr/local/lib/ser/modules/acc.so" > > > > > > > > > > > > # ----------------- setting module-specific parameters --------------- > > > > > > > > > > > > modparam("auth_radius", "radius_config", "/usr/local/etc/radiusclient/radiusclient.conf") > > > > > > modparam("auth_radius", "service_type", 15) > > > > > > modparam("acc", "radius_config", "/usr/local/etc/radiusclient/radiusclient.conf") > > > > > > > > > > > > Im building ser-0.8.12 from the FreeBSD (4.9) ports and define > > > > > > DEFS+=-DRAD_ACC > > > > > > LIBS=-L$(LOCALBASE)/lib -lradiusclient > > > > > > in the acc module Makefile > > > > > > > > > > > > Please help me correct this problem. > > > > > > > > > > > > > > > > > > > > > > -- > > > > With best regards! > > > > =============================================================================== > > > > Lance http://www.immt.net.ua > > > > > > > > _______________________________________________ > > > > Serusers mailing list > > > > serusers(a)lists.iptel.org > > > > http://lists.iptel.org/mailman/listinfo/serusers > > > > -- > > With best regards! > > ---------------------- > > NOC ISP Merlin Telecom > > Phone: 8 044 249-6570 > > =============================================================================== > > Lance > > ANP-RIPE Mailto: lance(a)merlin.net.ua > > > > _______________________________________________ > > Serusers mailing list > > serusers(a)lists.iptel.org > > http://lists.iptel.org/mailman/listinfo/serusers > Scanned by evaluation version of Dr.Web antivirus Daemon > http://drweb.ru/unix/ > -- With best regards! ---------------------- NOC ISP Merlin Telecom Phone: 8 044 249-6570 =============================================================================== Lance ANP-RIPE Mailto: lance(a)merlin.net.ua

20 years, 2 months

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

sr-users April 2004