Hi,
I forward a call to a remote softswitch from my SER (sip.xyz.com) to
(sip.abc.com). For example,
if (method=="INVITE" )
{
if (uri=~"sip:011"|| uri=~"sip:1")
{
forward(sip.abc.com,5060);break;};
};
After I hang up call from my UA , my SER can receive "CANCEL' but far end
softswitch is still trying this call so that PSDN keep ringing.
How can I let that softswitch get 'CANCEL' from my SER?
Thanks
Leon Sun
Hi everybody, I'm a newbie here...
I'd like to change the "From:" HF ...
here is my input:
From: User Name <sip:aaa123456\@1.1.1.1>;tag=426f34e337ec2855o
my regexp would be:
s/^From:(.*)aaa(\d{6})(.*)/From:$1$2$3/
so, I would like to remove the "aaa" prefix from the number:
the result should be:
From: User Name <sip:123456@1.1.1.1>;tag=426f34e337ec2855o
How can I use textops' replace() or subst_user() ??
Thanks,
Misi
Hello.
There was an interesting discussion about the same issue.
Check by Subject : [Serusers] STUN server on April 4. (you can
check the mailing list)
Regards,
Ricardo.-
> -----Mensaje original-----
> De: info(a)beeplove.com [mailto:info@beeplove.com]
> Enviado el: Jueves, 05 de Mayo de 2005 10:41
> Para: serusers(a)lists.iptel.org
> Asunto: RE: [Serusers] Nat+SER
>
>
>
>
>
> I have a simple question, if i am using stun server if there any need
> to use mediaproxy or rtpproxy, for users sitting behind routers ??
> and if yes which one is the better choise to do that (mediaproxy or
> rtpproxy)?
>
> Thanks for help.
>
>
> Stun server takes care of your clients who are behind
> Assymetric NAT. It
> also depends on client. Like, your cleints may not be forced
> to use STUN
> server.
> Also, if your client use STUN, you need to use
> [Media/RTP]Proxy to cover
> users who are from Symetric NAT.
> >From my personal experience, I found MediaProxy easy to
> configure and have
> some very good features. It doesn't mean RTPProxy is not good. I just
> couldn't make RTPProxy worked. Maybe I was not that familiar with
> RTPProxy/SER when I tried it.
> Well, after MediaProxy worked, I didn't try RTPProxy again.
>
> MOhammad
>
>
> --------------------------------------------------------------------
> mail2web - Check your email from the web at
> http://mail2web.com/ .
>
>
> _______________________________________________
> Serusers mailing list
> serusers(a)lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
I have a simple question, if i am using stun server if there any need
to use mediaproxy or rtpproxy, for users sitting behind routers ??
and if yes which one is the better choise to do that (mediaproxy or
rtpproxy)?
Thanks for help.
Stun server takes care of your clients who are behind Assymetric NAT. It
also depends on client. Like, your cleints may not be forced to use STUN
server.
Also, if your client use STUN, you need to use [Media/RTP]Proxy to cover
users who are from Symetric NAT.
>From my personal experience, I found MediaProxy easy to configure and have
some very good features. It doesn't mean RTPProxy is not good. I just
couldn't make RTPProxy worked. Maybe I was not that familiar with
RTPProxy/SER when I tried it.
Well, after MediaProxy worked, I didn't try RTPProxy again.
MOhammad
--------------------------------------------------------------------
mail2web - Check your email from the web at
http://mail2web.com/ .
I have a simple question, if i am using stun server if there any need
to use mediaproxy or rtpproxy, for users sitting behind routers ??
and if yes which one is the better choise to do that (mediaproxy or rtpproxy)?
Thanks for help.
Hi Cesc!
I tried your previuos suggestions on changing cleint certificate check.
I'm now running SSL_VERIFY_NONE. MS Messenger works again. But the snom
still fails.
Ethereal tells me the server doesn't ask for a client certificate any
more. Ethereal also shows that "Cipher Suite: TLS_RSA_WITH_RC4_128_SHA"
was selected. So far so good, but the snom still rejects the Server
Hello with an Alert.
What else have you changed? The original version worked with the snoms.
BTW patch throws some warnings:
# patch -i patch.core.cfg.files.diff
patching file cfg.y
Hunk #1 FAILED at 1.
1 out of 6 hunks FAILED -- saving rejects to file cfg.y.rej
patching file cfg.lex
Hunk #1 FAILED at 1.
1 out of 5 hunks FAILED -- saving rejects to file cfg.lex.rej
cfg.y.rej reads:
***************
*** 1,5 ****
/*
- * $Id: cfg.y,v 1.2 2005/01/06 14:35:10 sam Exp $
*
* cfg grammar
*
--- 1,5 ----
/*
+ * $Id: cfg.y,v 1.4 2005/05/03 08:16:35 cesc Exp $
*
* cfg grammar
*
cfg.lex.rej reads:
***************
*** 1,5 ****
/*
- * $Id: cfg.lex,v 1.2 2005/01/06 14:35:10 sam Exp $
*
* scanner for cfg files
*
--- 1,5 ----
/*
+ * $Id: cfg.lex,v 1.3 2005/04/11 08:18:31 cesc Exp $
*
* scanner for cfg files
*
Seems to be a minor mismatch, it compiles well anyway.
Alex Mack
Cesc Santasusana schrieb:
>Hi,
>
>Yeah ... I send it with my default config which is using client and server authentication.
>I use this settings with minisip client (supports client side certs) and for tls between ser proxies. It works perfect.
>
>To turn client authentication off, check:
>tls/tls_init.c file
>init_ssl_ctx_behavior function
>
>the line
>SSL_CTX_set_verify( _ctx, SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT, 0);
>
>means that the server will request a certificate from the client and if it doesn't get one, it will fail.
>
>Try changing it with:
>SSL_CTX_set_verify( _ctx, SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE, 0);
>this way the server will request a cert, the client will not provide, but on the following renegotiation, the server (ser) will not ask for a cert.
>
>And if you want to turn verification off ... completely ...
>SSL_CTX_set_verify( _ctx, SSL_VERIFY_NONE, 0);
>this will also work for you if only using tls for ser2phone ... it will not work if you want tls between proxies ... as the ser client will accept ANY certificate from the ser server.
>And then, from the prompt:
>
>
>>make TLS=1 all && make TLS=1 install ;)
>>
>>
>
>This whole verification thing needs to be improved and probably the parameters should be changeable directly from the config file. This and many other parameters should be exchangeable without the need to recompile.
>
>Any volunteer for a ser-tls.README? :D
>
>Can you provide me with some extra info from the snom phones and the messenger? Do it offline, so you can send me some ethereal captures and ser logs ...
>
>
>Regards,
>
>Cesc
>
>
>
>
>>>>Alex Mack <amack(a)fhm.edu> 05/04/05 02:01PM >>>
>>>>
>>>>
>Hi Cesc!
>
>I compiled in your patch.
>
>Now I'm facing a new problem: SER wants a client certificate from the
>UA. Snom phones immediately reply with an ALERT and break up connection
>upon the certificate requests. MS Messenger on the other hand sends at
>least a reply - without certificate - and SER rejects the Client Hello
>because of the missing client certificate:
>
>tls_accept: Error in SSL:
>tls_error: error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer
>did not return a certificate
>
>Could you please provide some more documentation about the new TLS
>options you added? It seems you've implemented support for client
>certificates for a two-way certificate authorization - which would be a
>good thing if supported by the UAs, which don't right now. So how can I
>turn it off again and get back to server side certification?
>
>Alex Mack
>
>Cesc Santasusana schrieb:
>
>
>
>>Hi everybody,
>>
>>The last i sent is a replacement as a whole for the original code sent by P. Griffiths. Sorry i forgot to mention that.
>>
>>The patches for cfg.y and cfg.lex are both in the same file (patch.core.cfg..files.diff) within the zip. I was lazy :)
>>I resent it as a whole, and not as a diff, because i indented all the code with tabs, instead of spaces (so a diff would be bigger than just sending all the files).
>>
>>As for the CVS thing ... i agree with Juha. Either gets into the "official" cvs or we do something about it. The code i think is rather stable as it is (i only tested on my debian linux box, soon i will try on an ARM linux and i will report back on that too). For me, as long as it gets into a CVS, i don't care if it is mantained against HEAD or 0.9.0 (i use 0.9.0 .... so all my patches are against it).
>>
>>On a more philosophical level, i understand the "quietness" on iptel's side ... they have their own version, and make money on it. But the thing is that this free version is here to stay ... it is the "problem" of opensource.
>>Another option would be for them to release their proprietary implementation if they feel that it is a better, more tested one.
>>In any case, i think that this whole thing needs to be decided fast.
>>
>>Regards!
>>
>>Cesc
>>
>>
>>
>>
>>
>>
>>>>>Alex Mack <amack(a)fhm.edu> 05/03/05 01:26PM >>>
>>>>>
>>>>>
>>>>>
>>Hi Cesc!
>>
>>Nice to have those fixes in a package.
>>
>>Is your cfg.y-patch to be applied *after* cfg.y.patch was applied or
>>*instead* of cfg.y.patch?
>>
>>Or is your version a patched one which replaces the original
>>implementation as a whole? In that case where's cfg.lex.patch?
>>
>>Alex Mack
>>
>>Cesc Santasusana schrieb:
>>
>>
>>
>>
>>>Hi,
>>>
>>>I really hate to be so pushy, but i dont understand how such an important piece of code as TLS is not moving on into CVS ... or anywhere else by this matter. I will keep sending patches till i get tired (soon).
>>>
>>>Anyway ... i thought someone may be interested in a compilation fix for cfg.y introduced with the tls_domains (it would not compile if the cfg.y file had been patched but the tls-core files were not there); a bug fix for the session caching (fixed by turning session caching and resumption off); and an extension (the ability to choose the list of allowed ciphers from the config file). Oh, and all the files have been tabbed, instead of spaced (for indentation).
>>>
>>>Enjoy!
>>>
>>>Cesc
>>>
>>>
>>>
>>>
>Unclassified
>
>
>>>------------------------------------------------------------------------
>>>
>>>_______________________________________________
>>>Serdev mailing list
>>>serdev(a)lists.iptel.org
>>>http://lists.iptel.org/mailman/listinfo/serdev
>>>
>>>
>>>
>>>
>>>
>>_______________________________________________
>>Serusers mailing list
>>serusers(a)lists.iptel.org
>>http://lists.iptel.org/mailman/listinfo/serusers
>>
>>_______________________________________________
>>Serusers mailing list
>>serusers(a)lists.iptel.org
>>http://lists.iptel.org/mailman/listinfo/serusers
>>
>>
>>
>>
>>
>
>
>
>
>
There is a missing line in your ser.cfg file at least the db_url parameter
... or are you using the default permissions?
Is not a bad idea to have the line anyway, here it goes...
modparam("auth_db|usrloc", "db_url", "mysql://ser:heslo@localhost/ser")
Regards,
-----Original Message-----
From: harry gaillac [mailto:gaillacharry@yahoo.fr]
Sent: quinta-feira, 5 de Maio de 2005 10:38
To: Elton Machado
Subject: RE: [Serusers] RE: Ser Crashes
Look at my ser.cfg
do you add users in db with serctl ?
Harry
--- Elton Machado <elton.machado(a)gmail.com> a écrit :
> And did you confirm if your mysql accept local connection with user
> name and password you are using?
>
> What do you mean by your authentication is working?
> Can you provide us a
> snip of your code?
>
>
>
> Regards,
>
>
>
>
>
>
>
>
>
>
>
> _____
>
> From: Edgardo O. Gonzales II
> [mailto:edgardo.g@pacific.net.ph]
> Sent: sexta-feira, 29 de Abril de 2005 5:36
> To: Elton Machado; 'IpTel List'; 'Iptel Mailing list'
> Subject: RE: [Serusers] RE: Ser Crashes
>
>
>
>
> I already did.. Im sure my username and password is correct because my
> authentication is working..
> any other suggestion ..
>
> At 06:17 AM 4/29/2005, Elton Machado wrote:
>
>
>
> Did you checked out well your configuration?
>
> You have to have something like...
>
> loadmodule "/usr/local/lib/ser/modules/mysql.so"
> loadmodule "/usr/local/lib/ser/modules/usrloc.so"
> loadmodule "/usr/local/lib/ser/modules/auth.so"
> loadmodule "/usr/local/lib/ser/modules/auth_db.so"
>
> #......
> modparam("auth_db|usrloc", "db_url",
> "mysql://ser:heslo@localhost/ser")
> modparam("auth_db", "calculate_ha1", 1) modparam("auth_db",
> "password_column", "password") modparam("usrloc", "db_mode", 2)
>
> to ser load things up from database, check if you have the right
> username and password, and if your mysql database is running.
>
>
>
> Regards,
>
>
>
>
>
> _____
>
> From: serusers-bounces(a)lists.iptel.org [
> mailto:serusers-bounces@lists.iptel.org
> <mailto:serusers-bounces@lists.iptel.org> ] On Behalf Of IpTel List
> Sent: quinta-feira, 21 de Abril de 2005 8:19
> To: Iptel Mailing list
> Subject: [Serusers] RE: Ser Crashes
>
> Hi!
>
> Thanx for help. It writes that he can't connect to MYSQL DB now ...
> Output is the following ...
>
> root@ignosya:/usr/local/etc/ser# ser -E -d Listening on
> 127.0.0.1 [127.0.0.1]:5060
> 84.230.194.213 [84.230.194.213]:5060
> 192.168.1.1 [192.168.1.1]:5060
> Aliases: 1.1.168.192.in-addr.arpa:5060
> a84-230-194-213.elisa-laajakaista.fi:5060
> localhost:5060
> root@ignosya:/usr/local/etc/ser# stateless - initializing Maxfwd
> module- initializing
> 0(15143) connect_db(): Can't connect to local MySQL server through
> socket '/var/run/mysql/mysql.sock' (2)
> 0(15143) db_init(): Error while trying to connect database
> 0(15143) mod_init(): Error while connecting database
> 0(15143) init_mod(): Error while initializing module usrloc
> ERROR: error while initializing modules
>
> root@ignosya:/usr/local/etc/ser#
>
> So, it seams for me, that it's like MYSQL problem.
> So, i have to reconfigure
> it ... or check it up ...
> But, are there any methods selecting mysql host adres? For example, if
> mysql is not on local machine ... is it enough to set SQL_HOST var?
>
> Best wishes,
> Alexandro.
> _______________________________________________
> Serusers mailing list
> serusers(a)lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
> > _______________________________________________
> Serusers mailing list
> serusers(a)lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
__________________________________________________________________
Découvrez le nouveau Yahoo! Mail : 250 Mo d'espace de stockage pour vos
mails !
Créez votre Yahoo! Mail sur http://fr.mail.yahoo.com/
-----Original Message-----
From: harry gaillac [mailto:gaillacharry@yahoo.fr]
Sent: quinta-feira, 5 de Maio de 2005 10:38
To: Elton Machado
Subject: RE: [Serusers] RE: Ser Crashes
Look at my ser.cfg
do you add users in db with serctl ?
Harry
--- Elton Machado <elton.machado(a)gmail.com> a écrit :
> And did you confirm if your mysql accept local
> connection with user name and
> password you are using?
>
> What do you mean by your authentication is working?
> Can you provide us a
> snip of your code?
>
>
>
> Regards,
>
>
>
>
>
>
>
>
>
>
>
> _____
>
> From: Edgardo O. Gonzales II
> [mailto:edgardo.g@pacific.net.ph]
> Sent: sexta-feira, 29 de Abril de 2005 5:36
> To: Elton Machado; 'IpTel List'; 'Iptel Mailing
> list'
> Subject: RE: [Serusers] RE: Ser Crashes
>
>
>
>
> I already did.. Im sure my username and password is
> correct because my
> authentication is working..
> any other suggestion ..
>
> At 06:17 AM 4/29/2005, Elton Machado wrote:
>
>
>
> Did you checked out well your configuration?
>
> You have to have something like...
>
> loadmodule "/usr/local/lib/ser/modules/mysql.so"
> loadmodule "/usr/local/lib/ser/modules/usrloc.so"
> loadmodule "/usr/local/lib/ser/modules/auth.so"
> loadmodule "/usr/local/lib/ser/modules/auth_db.so"
>
> #......
> modparam("auth_db|usrloc", "db_url",
> "mysql://ser:heslo@localhost/ser")
> modparam("auth_db", "calculate_ha1", 1)
> modparam("auth_db", "password_column", "password")
> modparam("usrloc", "db_mode", 2)
>
> to ser load things up from database, check if you
> have the right username
> and password, and if your mysql database is running.
>
>
>
> Regards,
>
>
>
>
>
> _____
>
> From: serusers-bounces(a)lists.iptel.org [
> mailto:serusers-bounces@lists.iptel.org
> <mailto:serusers-bounces@lists.iptel.org> ] On Behalf Of
> IpTel List
> Sent: quinta-feira, 21 de Abril de 2005 8:19
> To: Iptel Mailing list
> Subject: [Serusers] RE: Ser Crashes
>
> Hi!
>
> Thanx for help. It writes that he can't connect to
> MYSQL DB now ... Output
> is the following ...
>
> root@ignosya:/usr/local/etc/ser# ser -E -d
> Listening on
> 127.0.0.1 [127.0.0.1]:5060
> 84.230.194.213 [84.230.194.213]:5060
> 192.168.1.1 [192.168.1.1]:5060
> Aliases: 1.1.168.192.in-addr.arpa:5060
> a84-230-194-213.elisa-laajakaista.fi:5060
> localhost:5060
> root@ignosya:/usr/local/etc/ser# stateless -
> initializing
> Maxfwd module- initializing
> 0(15143) connect_db(): Can't connect to local MySQL
> server through socket
> '/var/run/mysql/mysql.sock' (2)
> 0(15143) db_init(): Error while trying to connect
> database
> 0(15143) mod_init(): Error while connecting
> database
> 0(15143) init_mod(): Error while initializing
> module usrloc
> ERROR: error while initializing modules
>
> root@ignosya:/usr/local/etc/ser#
>
> So, it seams for me, that it's like MYSQL problem.
> So, i have to reconfigure
> it ... or check it up ...
> But, are there any methods selecting mysql host
> adres? For example, if mysql
> is not on local machine ... is it enough to set
> SQL_HOST var?
>
> Best wishes,
> Alexandro.
> _______________________________________________
> Serusers mailing list
> serusers(a)lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
> > _______________________________________________
> Serusers mailing list
> serusers(a)lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
__________________________________________________________________
Découvrez le nouveau Yahoo! Mail : 250 Mo d'espace de stockage pour vos
mails !
Créez votre Yahoo! Mail sur http://fr.mail.yahoo.com/
Hi!
Thanx for help. It writes that he can't connect to MYSQL DB now ... Output is the following ...
root@ignosya:/usr/local/etc/ser# ser -E -d
Listening on
127.0.0.1 [127.0.0.1]:5060
84.230.194.213 [84.230.194.213]:5060
192.168.1.1 [192.168.1.1]:5060
Aliases: 1.1.168.192.in-addr.arpa:5060 a84-230-194-213.elisa-laajakaista.fi:5060 localhost:5060
root@ignosya:/usr/local/etc/ser# stateless - initializing
Maxfwd module- initializing
0(15143) connect_db(): Can't connect to local MySQL server through socket '/var/run/mysql/mysql.sock' (2)
0(15143) db_init(): Error while trying to connect database
0(15143) mod_init(): Error while connecting database
0(15143) init_mod(): Error while initializing module usrloc
ERROR: error while initializing modules
root@ignosya:/usr/local/etc/ser#
So, it seams for me, that it's like MYSQL problem. So, i have to reconfigure it ... or check it up ...
But, are there any methods selecting mysql host adres? For example, if mysql is not on local machine ... is it enough to set SQL_HOST var?
Best wishes,
Alexandro.
Is there a way to ensure that accounting information is written always. What
I mean is if for example due to some reason accounting server is non
contactable then the call should not mature. How can I achieve this ?
Thanxs
Deepak Singhal
Hi all again,
I am executing the SER 0.8.14 for Linux (SuSE 8.2).
I am generating some accouting through a syslog server and it works fine.
However, I want to change it to MySQL. According to the user manual, I am
supposed to edit a Makefile located in the acc file.
The problem is that I cannot find this Makefile at all. I have downloaded
all the SW package of SER and there is no acc file with the Makefile inside.
It is weird...
Any idea?
Thanks in advance
Victor
Victor
