i've read so much lines to understand, but i couldn't find a real example
how to solve my question ;
* SER runs on RedHat 9.0 (no DNS)
* FreeRadius and MySql installed
* I can register two VOIP phones with no auth. (with sample ser.cfg)
* IP's are follows;
SER : 192.168.0.80
VOIP A : 192.168.0.100
VOIP B : 192.168.0.101
PUBLIC IP : 85.96.192.XXX (ADSL ROUTER/GATEWAY)
With above config. the system runs but there's no auth made.
* I'm gonna place SER Server onto Public IP soon and add other users and
they'are all behind NAT (I can do port forwarding from their Routers)
* I want to move FreeRadius and MySql onto another System (Windows XP)
with IP 192.168.0.50
* I want to use PHPMyAdmin to manage database, and develop a nice webpage
for users to manage their accounts etc. How can i do that and what to with
ser.cfg
Sorry for taking time but i'm new to SER
--
>>> please do not use
>>> l.s.d(a)dnaofdesign.com
>>> above account is stand by
>>> use same account as
>>> cosmocid(a)ispro.net.tr
Hi:
I am working on softswitches and majored in SIP protocol.During my works I found something confused me.
In [contact] head field there are many expresions to see , and seems they are all right.So I searched multi documents to find out how many expresions are present.
For example:
contact: sip:john.doe@domain.com
contact: sip:john.doe@domain.com:5060
contact: sip:john.doe@domain.com expires=3600
contact: sip:john.doe@127.0.0.1
And so on.
I am really confused and wondered how many things can 'contact' do,how many informations can 'contact' provide?
Anyone who could aguide me where I can make sure what contact do?
Regards
edison.
Hi Karle,
thanks for the tip with rel_0_8_12.
it's working without problem.
Maybe it should be more emphasized on iptel.org/ser/serweb site and link it for
this version . I had also some problems even with the 2004/7/27
so it might avoid problems for new users.
Thank you for your help
Lada
______________________________________________________________
> Od: Karel Kozlik <karel(a)iptel.org>
> Komu: Ladislav Andel <ladia6(a)centrum.cz>
> CC: serusers(a)lists.iptel.org
> Datum: Tue, 25 Jan 2005 12:07:53 +0100
> Předmět: Re: [Serusers] serweb login
>
> Hi Lada,
> first I recommend not to use last CVS version. It is developer unstable
> and currently I am not sure if it is usable.
>
> Instead of this you should use version rel_0_8_12.
>
> cvs co -r rel_0_8_12 iptel
>
> However login should be working in last CVS version. I can't tell you
> what is wrong, may be configuration of php. It seems that same problem
> as you have more peoples, but I doesn't know why. Please if you solve
> the problem, could you tell me what was wrong?
>
> Only thing that I can advice to you is try add to code some prints to
> see if values are obtained corectly from browser. Use the:
>
> print_r($_POST);
>
> somewhere at beginning of index.php to see if values are get from html
> form. And you may add some
>
> echo "1";
> echo "2";
> etc.
>
> to see flow in the script.
>
> Karel
>
>
>
>
>
> Ladislav Andel napsal(a):
> > Hi list,
> > I'm trying to make SERWEB working (the last CVS version), but ending with the same issue all the time.
> > When I try login as admin or user it always goes to a blank white page and nothing happen.
> >
> > I followed the INSTALL file thoroughly and set up every mentioned detail in config files.
> > Register_globals is also On in php.ini..etc.
> >
> > I went through entire list and haven't found my situation solution.
> > It might also be a wrong set up of my apache
> > I haven't got any error message either in httpd errorlog nor on the screen of my Firefox webbrowser. Everything seems to be ok.
> >
> > I'm attaching the names of packages I installed on my Suse Linux 9.1
> >
> > php4-zlib-4.3.4-26
> > php4-mysql-4.3.4-26
> > php4-domxml-4.3.4-26
> > php4-ldap-4.3.4-26
> > php4-4.3.4-26
> > php4-devel-4.3.4-26
> > php4-pear-4.3.4-26
> >
> > apache2-prefork-2.0.49-23
> > apache2-mod_php4-4.3.4-26
> > apache2-2.0.49-23
> > apache2-doc-2.0.49-23
> >
> > here is sniff from ethereal:
> >
> > POST /serweb/html/admin/index.php HTTP/1.1
> > Host: suse.sip
> > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0
> > Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
> > Accept-Language: cs,en-us;q=0.7,en;q=0.3
> > Accept-Encoding: gzip,deflate
> > Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
> > Keep-Alive: 300
> > Connection: keep-alive
> > Referer: http://suse.sip/serweb/html/admin/
> > Cookie: phplib_Session=653e0f64a2aeb8b2e4d26aa12e0ac3fc
> > Content-Type: application/x-www-form-urlencoded
> > Content-Length: 42
> >
> >
> >
> > uname=admin&passw=heslo&okey.x=46&okey.y=4HTTP/1.1 200 OK
> > Date: Mon, 24 Jan 2005 23:37:18 GMT
> > Server: Apache/2.0.49 (Linux/SuSE)
> > X-Powered-By: PHP/4.3.4
> > Pragma: no-cache
> > Cache-Control: no-cache
> > Expires: Mon, 26 Jul 1997 05:00:00 GMT
> > Last-Modified: Mon, 24 Jan 2005 23:37:18 GMT
> > Cache-Control: post-check=0, pre-check=0
> > Content-Length: 0
> > Content-Type: text/html; charset=ISO-8859-1
> >
> >
> >
> > Does anybody have an idea whatt I'm missing or doing wrong?
> >
> > Lada
> >
> > _______________________________________________
> > Serusers mailing list
> > serusers(a)lists.iptel.org
> > http://lists.iptel.org/mailman/listinfo/serusers
The code is commented because SER would fail when restarted if they
were not. I get the below mentioned errors when I uncomment
Any ideas??
Thanks,
Aisling
---- Original Message ----
From: Daniel-Constantin.Mierla(a)fokus.fraunhofer.de
To: ashling.odriscoll(a)cit.ie
Subject: Re: [Serusers] FW: SER Authentication Prob
Date: Tue, 25 Jan 2005 11:08:45 +0100
>the config you posted does not match the errors which say that the
>auth_db module can't find a database module. But in you config the
>line
>loadmodule "/usr/lib/ser/modules/auth_db.so" is commented, so the
>auth_db shouldn't be loaded.
>
>Anyhow, you need loadmodule "/usr/lib/ser/modules/mysql.so" to load
>mysql database module.
>
>Daniel
>
>On 01/25/05 10:53, Ashling O'Driscoll wrote:
>
>>If it helps any bit: I got the following errors from
>>/var/log/messages:
>>
>>mod_init(): Unable to bind database module
>>init_mod(): Error while initialising module auth_db
>>
>>Does anyone know how the above can be solved?...Im not that familiar
>>with linux so if I have to modify something, please make the
>>instructions as basic as possible!
>>
>>Always apprecitive of help,
>>Aisling.
>>
>>---- Original Message ----
>>From: ashling.odriscoll(a)cit.ie
>>To: serusers(a)iptel.org
>>Subject: FW: SER Authentication Prob
>>Date: Mon, 24 Jan 2005 19:26:13 -0000
>>
>>Hi all,
>>
>>Hope somebody can help-I really am stumped as to why this won't work
>>and would really appreciate if someone could shed some light on the
>>problem....
>>
>>I currently have SER set up and clients are registering
>successfully.
>>However I want clients to authenticate before they can register.
>>Howevere when I uncomment the relevant lines in the ser.cfg file, my
>>clients can't register. The only thing I can think of is that SER is
>>behind NAT and my clients may/may not be behind NAT....I have
>>included my ser.cfg file below...I have spent along time trying to
>>understand why this is happening so any help will be appreciated!
>>
>>Thanks,
>>Aisling.
>>
>>#
>># $Id: ser.cfg,v 1.21.4.1 2003/11/10 15:35:15 andrei Exp $
>>#
>># simple quick-start config script
>>#
>>
>># ----------- global configuration parameters
>------------------------
>>
>>#debug=3 # debug level (cmd line: -dddddddddd)
>>#fork=yes
>>#log_stderror=no # (cmd line: -E)
>>
>>/* Uncomment these lines to enter debugging mode
>>debug=7
>>fork=no
>>log_stderror=yes
>>*/
>>
>>check_via=no # (cmd. line: -v)
>>dns=no # (cmd. line: -r)
>>rev_dns=no # (cmd. line: -R)
>>port=5060
>>#children=4
>>fifo="/tmp/ser_fifo"
>>
>>alias=84.203.148.14
>>
>># ------------------ module loading
>----------------------------------
>>
>># Uncomment this if you want to use SQL database
>>#loadmodule "/usr/lib/ser/modules/mysql.so"
>>
>>loadmodule "/usr/lib/ser/modules/sl.so"
>>loadmodule "/usr/lib/ser/modules/tm.so"
>>loadmodule "/usr/lib/ser/modules/rr.so"
>>loadmodule "/usr/lib/ser/modules/maxfwd.so"
>>loadmodule "/usr/lib/ser/modules/usrloc.so"
>>loadmodule "/usr/lib/ser/modules/registrar.so"
>>loadmodule "/usr/lib/ser/modules/nathelper.so"
>>#loadmodule "/usr/lib/ser/modules/mediaproxy.so"
>>loadmodule "/usr/lib/ser/modules/textops.so"
>>#loadmodule "/usr/lib/ser/modules/maxfwd.so"
>>
>># Uncomment this if you want digest authentication
>># mysql.so must be loaded !
>>#loadmodule "/usr/lib/ser/modules/auth.so"
>>#loadmodule "/usr/lib/ser/modules/auth_db.so"
>>
>># ----------------- setting module-specific parameters
>---------------
>>
>># -- usrloc params --
>>
>>modparam("usrloc", "db_mode", 0)
>>
>># Uncomment this if you want to use SQL database
>># for persistent storage and comment the previous line
>>#modparam("usrloc", "db_mode", 2)
>>
>># -- auth params --
>># Uncomment if you are using auth module
>>#
>>#modparam("auth_db", "calculate_ha1", yes)
>>#
>># If you set "calculate_ha1" parameter to yes (which true in this
>>config),
>># uncomment also the following parameter)
>>#
>>#modparam("auth_db", "password_column", "password")
>>
>># -- rr params --
>># add value to ;lr param to make some broken UAs happy
>>modparam("rr", "enable_full_lr", 1)
>>
>>#!!Nathelper
>>#modparam("registrar","nat_flag",6)
>>#modparam("nathelper","natping_interval",30) #Ping intervals 30
>>seconds
>>#modparam("nathelper","ping_nated_only",1) #Ping only clinets
>>behind NAT
>>
>># -------------------------request routing logic-------------------
>>
>># main routing logic
>>
>>route{
>>
>> # initial sanity checks -- messages with
>> # max_forwards==0, or excessively long requests
>> if (!mf_process_maxfwd_header("10")) {
>> sl_send_reply("483","Too Many Hops");
>> break;
>> };
>> if ( msg:len > max_len ) {
>> sl_send_reply("513", "Message too big");
>> break;
>> };
>>
>> #############Aisling Insert################
>># #!Nat Insert
>># #the below line tests if the IP of the received packet is
>different
>>from the IP in the via header and also
>># #sees if the IP address in the contact header is private
>># if (nat_uac_test("3")){
>># if (method == "REGISTER" || ! search("^Record-Route:")){
>># log("Log: Someone trying to register from private
>>IP,rewriting\n");
>># # fixed_nated_contact(); #Rewrite contact with source IP
>># if (method == "INVITE"){
>># fix_nated_sdp("1"); #Add direction=active to SDP
>># };
>># force_rport(); # Add rport parameter to topmost Via
>># setflag(6); # Mark as Nated
>># };
>># };
>> ###################End#####################
>>
>> # we record-route all messages -- to make sure that
>> # subsequent messages will go through our proxy; that's
>> # particularly good if upstream and downstream entities
>> # use different transport protocol
>>
>> if (!method == "REGISTER") record_route();
>>
>> # loose-route processing
>> if (loose_route()) {
>> t_relay();
>> break;
>> };
>>
>> # if the request is for other domain use UsrLoc
>> # (in case, it does not work, use the following command
>> # with proper names and addresses in it)
>> if (uri==myself) {
>>
>> if (method=="REGISTER") {
>>
>># Uncomment this if you want to use digest authentication
>># if (!www_authorize("84.203.148.14", "subscriber")) {
>># www_challenge("84.203.148.14", "0");
>># break;
>># };
>> save("location");
>> break;
>> };
>>
>> # native SIP destinations are handled using our USRLOC DB
>> if (!lookup("location")) {
>> sl_send_reply("404", "Not Found");
>> break;
>> };
>> };
>>
>> #inserted by klaus
>> if (method == "INVITE"){
>> record_route();
>> force_rtp_proxy();
>> /* set up reply processing*/
>> t_on_reply("1");
>> };
>>
>> # forward to current uri now; use stateful forwarding; that
>> # works reliably even if we forward from TCP to UDP
>> if (!t_relay()) {
>> sl_reply_error();
>> };
>>
>>}
>>
>>#insert by klaus
>>
>>onreply_route[1]{
>> if (status=~"[12][0-9][0-9]")
>> force_rtp_proxy();
>>}
>>
>>#route[1]
>>#{
>> #if client or server know to be behind NAT, enable relay
>># if (isflagset(6)){
>># force_rtp_proxy();
>># };
>>#
>># #NAT processing of replies; apply to all transaction (for example,
>># #reinvites from public to private UA are hard to identify as
>># #Nated at the moment of request processing); look at replies
>># t_on_reply("1");
>>#
>># #send it out now; use stateful forwarding as it works reliably
>># #even for UDP2TCP
>># if(!t_relay()){
>># sl_reply_error();
>># };
>>#}
>>
>>#!!NatHelper
>>
>>#onreply_route[1]{
>>#Nated Transaction??
>>#if (isflagset(6) && status =~ "(183)\2[0-9][0-9]"){
>># #fixed_nated_contact();
>># force_rtp_proxy();
>># }
>>#else if (nat_uac_test("1")){
>># fix_nated_contact();
>># };
>>#}
>>
>>
>>
>>
>>
>>-------------------Legal
>Disclaimer---------------------------------------
>>
>>The above electronic mail transmission is confidential and intended
>only for the person to whom it is addressed. Its contents may be
>protected by legal and/or professional privilege. Should it be
>received by you in error please contact the sender at the above
>quoted email address. Any unauthorised form of reproduction of this
>message is strictly prohibited. The Institute does not guarantee the
>security of any information electronically transmitted and is not
>liable if the information contained in this communication is not a
>proper and complete record of the message as transmitted by the
>sender nor for any delay in its receipt.
>>
>>_______________________________________________
>>Serusers mailing list
>>Serusers(a)iptel.org
>>http://mail.iptel.org/mailman/listinfo/serusers
>>
>>
>>
>
>-------------------Legal
>Disclaimer---------------------------------------
>
>The above electronic mail transmission is confidential and intended
>only for the person to whom it is addressed. Its contents may be
>protected by legal and/or professional privilege. Should it be
>received by you in error please contact the sender at the above
>quoted email address. Any unauthorised form of reproduction of this
>message is strictly prohibited. The Institute does not guarantee the
>security of any information electronically transmitted and is not
>liable if the information contained in this communication is not a
>proper and complete record of the message as transmitted by the
>sender nor for any delay in its receipt.
>
-------------------Legal Disclaimer---------------------------------------
The above electronic mail transmission is confidential and intended only for the person to whom it is addressed. Its contents may be protected by legal and/or professional privilege. Should it be received by you in error please contact the sender at the above quoted email address. Any unauthorised form of reproduction of this message is strictly prohibited. The Institute does not guarantee the security of any information electronically transmitted and is not liable if the information contained in this communication is not a proper and complete record of the message as transmitted by the sender nor for any delay in its receipt.
Hi All.
Does anyone know why my grandstream BT100 firmware 1.0.5.16 shows the caller ID rather than
"anonymous" even though I have Remote-Part-ID enabled with privacy=full?
Below is the INVITE message sent to the BT100 from a UTstarcom ATA.
Regards,
Paul
U 2005/01/24 16:43:55.073424 68.84.xxx.xxx:5060 -> 68.84.xxx.xxx:13721
INVITE sip:3215551212@68.84.xxx.xxx:13721;user=phone SIP/2.0.
Record-Route: <sip:68.84.xxx.xxx;ftag=2590080990;lr=on>.
Via: SIP/2.0/UDP 68.84.xxx.xxx;branch=z9hG4bK5082.72060543.0.
Via: SIP/2.0/UDP 192.168.0.86:5060;rport=1041;received=68.84.xxx.xxx;branch=z9hG4bK1403464825.
From: UTStarcom <sip:4075551212@mycompany.com>;tag=2590080990.
To: <sip:3215551212@mycompany.com>.
Call-ID: 1980470039(a)192.168.0.86.
CSeq: 1301 INVITE.
Contact: <sip:4075551212@68.84.xxx.xxx:1041>.
max-forwards: 16.
subject: sipcall.
Allow: INVITE, ACK, CANCEL, BYE, REFER, NOTIFY.
Content-Type: application/sdp.
Content-Length: 178.
Remote-Party-ID: "Anonymous"
<sip:unknown@68.84.xxx.xxx;user=phone>;party=calling;screen=yes;id-type=subscriber;privacy=full.
.
v=0.
o=- 1363 3077 IN IP4 192.168.0.86.
s=-.
c=IN IP4 68.84.xxx.xxx.
t=0 0.
m=audio 36526 RTP/AVP 18 0 8 2 4 101.
a=rtpmap:101 telephone-event/8000.
a=fmtp:101 0-15.
a=ptime:20.
__________________________________
Do you Yahoo!?
Yahoo! Mail - Helps protect you from nasty viruses.
http://promotions.yahoo.com/new_mail
Hi list,
I'm trying to make SERWEB working (the last CVS version), but ending with the same issue all the time.
When I try login as admin or user it always goes to a blank white page and nothing happen.
I followed the INSTALL file thoroughly and set up every mentioned detail in config files.
Register_globals is also On in php.ini..etc.
I went through entire list and haven't found my situation solution.
It might also be a wrong set up of my apache
I haven't got any error message either in httpd errorlog nor on the screen of my Firefox webbrowser. Everything seems to be ok.
I'm attaching the names of packages I installed on my Suse Linux 9.1
php4-zlib-4.3.4-26
php4-mysql-4.3.4-26
php4-domxml-4.3.4-26
php4-ldap-4.3.4-26
php4-4.3.4-26
php4-devel-4.3.4-26
php4-pear-4.3.4-26
apache2-prefork-2.0.49-23
apache2-mod_php4-4.3.4-26
apache2-2.0.49-23
apache2-doc-2.0.49-23
here is sniff from ethereal:
POST /serweb/html/admin/index.php HTTP/1.1
Host: suse.sip
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Language: cs,en-us;q=0.7,en;q=0.3
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://suse.sip/serweb/html/admin/
Cookie: phplib_Session=653e0f64a2aeb8b2e4d26aa12e0ac3fc
Content-Type: application/x-www-form-urlencoded
Content-Length: 42
uname=admin&passw=heslo&okey.x=46&okey.y=4HTTP/1.1 200 OK
Date: Mon, 24 Jan 2005 23:37:18 GMT
Server: Apache/2.0.49 (Linux/SuSE)
X-Powered-By: PHP/4.3.4
Pragma: no-cache
Cache-Control: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 24 Jan 2005 23:37:18 GMT
Cache-Control: post-check=0, pre-check=0
Content-Length: 0
Content-Type: text/html; charset=ISO-8859-1
Does anybody have an idea whatt I'm missing or doing wrong?
Lada
If it helps any bit: I got the following errors from
/var/log/messages:
mod_init(): Unable to bind database module
init_mod(): Error while initialising module auth_db
Does anyone know how the above can be solved?...Im not that familiar
with linux so if I have to modify something, please make the
instructions as basic as possible!
Always apprecitive of help,
Aisling.
---- Original Message ----
From: ashling.odriscoll(a)cit.ie
To: serusers(a)iptel.org
Subject: FW: SER Authentication Prob
Date: Mon, 24 Jan 2005 19:26:13 -0000
Hi all,
Hope somebody can help-I really am stumped as to why this won't work
and would really appreciate if someone could shed some light on the
problem....
I currently have SER set up and clients are registering successfully.
However I want clients to authenticate before they can register.
Howevere when I uncomment the relevant lines in the ser.cfg file, my
clients can't register. The only thing I can think of is that SER is
behind NAT and my clients may/may not be behind NAT....I have
included my ser.cfg file below...I have spent along time trying to
understand why this is happening so any help will be appreciated!
Thanks,
Aisling.
#
# $Id: ser.cfg,v 1.21.4.1 2003/11/10 15:35:15 andrei Exp $
#
# simple quick-start config script
#
# ----------- global configuration parameters ------------------------
#debug=3 # debug level (cmd line: -dddddddddd)
#fork=yes
#log_stderror=no # (cmd line: -E)
/* Uncomment these lines to enter debugging mode
debug=7
fork=no
log_stderror=yes
*/
check_via=no # (cmd. line: -v)
dns=no # (cmd. line: -r)
rev_dns=no # (cmd. line: -R)
port=5060
#children=4
fifo="/tmp/ser_fifo"
alias=84.203.148.14
# ------------------ module loading ----------------------------------
# Uncomment this if you want to use SQL database
#loadmodule "/usr/lib/ser/modules/mysql.so"
loadmodule "/usr/lib/ser/modules/sl.so"
loadmodule "/usr/lib/ser/modules/tm.so"
loadmodule "/usr/lib/ser/modules/rr.so"
loadmodule "/usr/lib/ser/modules/maxfwd.so"
loadmodule "/usr/lib/ser/modules/usrloc.so"
loadmodule "/usr/lib/ser/modules/registrar.so"
loadmodule "/usr/lib/ser/modules/nathelper.so"
#loadmodule "/usr/lib/ser/modules/mediaproxy.so"
loadmodule "/usr/lib/ser/modules/textops.so"
#loadmodule "/usr/lib/ser/modules/maxfwd.so"
# Uncomment this if you want digest authentication
# mysql.so must be loaded !
#loadmodule "/usr/lib/ser/modules/auth.so"
#loadmodule "/usr/lib/ser/modules/auth_db.so"
# ----------------- setting module-specific parameters ---------------
# -- usrloc params --
modparam("usrloc", "db_mode", 0)
# Uncomment this if you want to use SQL database
# for persistent storage and comment the previous line
#modparam("usrloc", "db_mode", 2)
# -- auth params --
# Uncomment if you are using auth module
#
#modparam("auth_db", "calculate_ha1", yes)
#
# If you set "calculate_ha1" parameter to yes (which true in this
config),
# uncomment also the following parameter)
#
#modparam("auth_db", "password_column", "password")
# -- rr params --
# add value to ;lr param to make some broken UAs happy
modparam("rr", "enable_full_lr", 1)
#!!Nathelper
#modparam("registrar","nat_flag",6)
#modparam("nathelper","natping_interval",30) #Ping intervals 30
seconds
#modparam("nathelper","ping_nated_only",1) #Ping only clinets
behind NAT
# -------------------------request routing logic-------------------
# main routing logic
route{
# initial sanity checks -- messages with
# max_forwards==0, or excessively long requests
if (!mf_process_maxfwd_header("10")) {
sl_send_reply("483","Too Many Hops");
break;
};
if ( msg:len > max_len ) {
sl_send_reply("513", "Message too big");
break;
};
#############Aisling Insert################
# #!Nat Insert
# #the below line tests if the IP of the received packet is different
from the IP in the via header and also
# #sees if the IP address in the contact header is private
# if (nat_uac_test("3")){
# if (method == "REGISTER" || ! search("^Record-Route:")){
# log("Log: Someone trying to register from private
IP,rewriting\n");
# # fixed_nated_contact(); #Rewrite contact with source IP
# if (method == "INVITE"){
# fix_nated_sdp("1"); #Add direction=active to SDP
# };
# force_rport(); # Add rport parameter to topmost Via
# setflag(6); # Mark as Nated
# };
# };
###################End#####################
# we record-route all messages -- to make sure that
# subsequent messages will go through our proxy; that's
# particularly good if upstream and downstream entities
# use different transport protocol
if (!method == "REGISTER") record_route();
# loose-route processing
if (loose_route()) {
t_relay();
break;
};
# if the request is for other domain use UsrLoc
# (in case, it does not work, use the following command
# with proper names and addresses in it)
if (uri==myself) {
if (method=="REGISTER") {
# Uncomment this if you want to use digest authentication
# if (!www_authorize("84.203.148.14", "subscriber")) {
# www_challenge("84.203.148.14", "0");
# break;
# };
save("location");
break;
};
# native SIP destinations are handled using our USRLOC DB
if (!lookup("location")) {
sl_send_reply("404", "Not Found");
break;
};
};
#inserted by klaus
if (method == "INVITE"){
record_route();
force_rtp_proxy();
/* set up reply processing*/
t_on_reply("1");
};
# forward to current uri now; use stateful forwarding; that
# works reliably even if we forward from TCP to UDP
if (!t_relay()) {
sl_reply_error();
};
}
#insert by klaus
onreply_route[1]{
if (status=~"[12][0-9][0-9]")
force_rtp_proxy();
}
#route[1]
#{
#if client or server know to be behind NAT, enable relay
# if (isflagset(6)){
# force_rtp_proxy();
# };
#
# #NAT processing of replies; apply to all transaction (for example,
# #reinvites from public to private UA are hard to identify as
# #Nated at the moment of request processing); look at replies
# t_on_reply("1");
#
# #send it out now; use stateful forwarding as it works reliably
# #even for UDP2TCP
# if(!t_relay()){
# sl_reply_error();
# };
#}
#!!NatHelper
#onreply_route[1]{
#Nated Transaction??
#if (isflagset(6) && status =~ "(183)\2[0-9][0-9]"){
# #fixed_nated_contact();
# force_rtp_proxy();
# }
#else if (nat_uac_test("1")){
# fix_nated_contact();
# };
#}
-------------------Legal Disclaimer---------------------------------------
The above electronic mail transmission is confidential and intended only for the person to whom it is addressed. Its contents may be protected by legal and/or professional privilege. Should it be received by you in error please contact the sender at the above quoted email address. Any unauthorised form of reproduction of this message is strictly prohibited. The Institute does not guarantee the security of any information electronically transmitted and is not liable if the information contained in this communication is not a proper and complete record of the message as transmitted by the sender nor for any delay in its receipt.
FWIW. I hope this may save someone some time and effort.
Cisco provides documentation on how to convert a Cisco model 79XX phone
from a CM configuration to a SIP configuration.
I've recently converted two phones. With the first one, everything went
deceptively easily. As I discovered later, this was because my TFTP
server was the same system which had answered the DHCP request from the
phone. This was accidental, as the LAN where the phone was connected
was served by two DHCP servers: one on the same LAN, the other further
away. The local one responded more quickly to the DHCP request, and
happened also to be the relevant TFTP server.
For the second phone, on a different LAN, a suitable local server was
found which could provide the TFTP service. The DHCP servers, however,
were on remote LANs. The following configuration statements were used
with ISC dhcpd to point the phone at the local TFTP service.
# Top of file, among global configuration statements
# Define an option called 'option-150'
option option-150 code 150 = ip-address;
# This host is the 'first phone' mentioned above
host blower {
hardware ethernet 00:0f:23:00:13:3f;
fixed-address 192.168.2.108;
}
# This host is the 'second phone' mentioned above
host squawk {
hardware ethernet 00:11:5c:93:ab:69;
fixed-address 192.168.150.33;
option tftp-server-name "local-server.example.com";
server-name "local-server.example.com";
next-server local-server.example.com;
option option-150 local-server.example.com;
}
This section of the configuration file was developed incrementally
until the phone loaded its SIP configuration. The 'server-name'
and 'next-server' statements probably have no useful effect. It
was simply convenient to leave them in place rather than to edit
the configuration again.
The 'option tftp-server-name' statement is needed once the phone
has been configured for SIP, as the SIP firmware (?) uses option
66, which is set by this command, to identify the TFTP server.
The 'option option-150' statement is needed before the phone has
been configued for SIP, as the CM firmware uses option 150 for
the same purpose.
Although the Cisco document mentions option 66 as specifying the
_address_ of the TFTP server, Droms' and Lemon's book describes
this option as specifying the _name_ of the server; this is what
the ISC server expects.
Bear in mind that domain names to be passed as names in DHCP options
are specified to the ISC server as quoted strings; in contrast,
domain names to be passed as addresses in DHCP options are specified
without quotes.
Web searches for 'converting call manager phone sip' and 'droms lemon'
will probably find the Cisco document and book mentioned above.
Best regards,
Niall O'Reilly
PGP key ID: AE995ED9 (see www.pgp.net)
Fingerprint: 23DC C6DE 8874 2432 2BE0 3905 7987 E48D AE99 5ED9
Hi,
I have installed rtpproxy and ser-0.8.14 on server and it works fine. I also installed a firewall using iptables. I would like to know the "udp port range" of rtpproxy so that I can set the firewall policy on server.
Thank you.
Thomas
