sr-users March 2006

sr-users@lists.kamailio.org

223 participants
505 discussions

by Florian Fainelli

Hello, I am attempting to use the lcr module (well configured, routes are found), but I can't get it forward my calls to the destination gateway. - is it implicit that load_gws() in a route block will forward calls ? - if not, how do I manage to get calls forwarded ? Thank you very much for your answer. -- Cordialement, Florian Fainelli --------------------------------------------- 5, rue Charles Fourier Chambre 1511 91011 Evry http://www.alphacore.net (+33) 01 60 76 64 86 (+33) 06 09 02 64 95 --------------------------------------------- Institut National des Télécommunications http://www.int-evry.fr/telecomint ---------------------------------------------

18 years, 8 months

[Serusers] Two clients behind same NAT and external registrar

by Chris Roberts

Heya, I've found this code for detecting if two clients are behind the same NAT from the AVPops documentation: ... # get to the final RURI if (!lookup("location")) { sl_send_reply("404","Not found"); break; } # get the host part of the final uri (IP part) and store it in AVP ID 13 avp_write("$ruri/domain", "i:13"); if (avp_check("i:13","eq/$src_ip/i")) { # source IP is the same as destination IP ........... } avp_delete("i:13/g"); ... I'm trying to apply this in my situation with an external registrar, and I can't think of a way I can make this fit. The basic call flow is: UAC->SER (INVITE) SER->REGISTRAR (INVITE) REGISTRAR->SER (Trying/302 Moved) SER->UAC (INVITE) UAC->SER (Trying/OK) SER->UAC (ACK) This uses the Contact header in the returned response from the registrar to provide serial forking, etc. I can't see how to make this work - the only thought I have is that I may be able to leave the original SDP header intact on the invite to the registrar, and then only fix the SDP header in the INVITE sent to the UAC AFTER the 302 moved, by using the onbranch_route (as we should now have both dest/source). I think I tried something like this though and it didn't work. Any ideas, is my logic correct? Cheers, Chris. -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 268.1.2/274 - Release Date: 03/03/2006

18 years, 8 months

[Serusers] ser with radius group checking - something amiss

by Velimir Novkovic

Hi, I run SER with Radius/MySQL for authentication and accounting. Things are pretty much in place except for group checking. I have something like this in my ser.cfg: .... modparam("auth_radius", "radius_config", "/etc/radiusclient-ng/radiusclient.conf") modparam("group_radius", "use_domain", 1) ..... if (uri=~"^sip:[0-9]{8}@") { # Domestic PSTN if (!radius_is_user_in("credentials", "ld")) { sl_send_reply("403", "No permission for domestic calls"); break; }; route(4); break; }; .... When I look at Radius debug log I can see that when ser sends a request to radius, radius wants to do digest on it and then the complete request fails and call can't go through. Output looks something like this: .. rad_recv: Access-Request packet from host 127.0.0.1:34027, id=18, length=72 User-Name = "81000(a)sage.home.local" Sip-Group = "voicemail" Service-Type = Group-Check NAS-Port = 0 NAS-IP-Address = 127.0.0.1 Processing the authorize section of radiusd.conf .. ** bunch of sql statements ... .. modcall: group authorize returns ok for request 17 rad_check_password: Found Auth-Type Digest auth: type "digest" Processing the authenticate section of radiusd.conf modcall: entering group authenticate for request 17 ERROR: No Digest-Nonce: Cannot perform Digest authentication modcall[authenticate]: module "digest" returns invalid for request 17 modcall: group authenticate returns invalid for request 17 auth: Failed to validate the user. In databases I have following: mysql> SELECT id,UserName,Attribute,Value,op FROM radreply WHERE Username = '81000(a)sage.home.local' ORDER BY id; +----+-----------------------+--------------+-------------+----+ | id | UserName | Attribute | Value | op | +----+-----------------------+--------------+-------------+----+ | 18 | 81000(a)sage.home.local | Service-Type | Group-Check | := | +----+-----------------------+--------------+-------------+----+ 1 row in set (0.00 sec) mysql> SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = '81000(a)sage.home.local' ORDER BY id; +----+-----------------------+---------------+------------------------------ ------+----+ | id | UserName | Attribute | Value | op | +----+-----------------------+---------------+------------------------------ ------+----+ | 23 | 81000(a)sage.home.local | User-Password | $1$d7XAeahG$9f17cb8JaKj8R1z9GpwG4/ | := | | 25 | 81000(a)sage.home.local | Sip-Rpid | 81000 | = | | 30 | 81000(a)sage.home.local | Auth-Type | Digest | := | +----+-----------------------+---------------+------------------------------ ------+----+ mysql> SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche ck.Value,radgroupcheck.op FR OM radgroupcheck,usergroup WHERE usergroup.Username = '81000(a)sage.home.local' AND usergroup.GroupName = radgroupcheck.G roupName ORDER BY radgroupcheck.id; +----+-----------+-----------+--------+----+ | id | GroupName | Attribute | Value | op | +----+-----------+-----------+--------+----+ | 12 | voicemail | Auth-Type | Accept | := | +----+-----------+-----------+--------+----+ Has anyone had a chance to do something like this with success? I am stuck at the moment - any help is greatly appreciated. Thanks. /Vel

18 years, 8 months

Re: [Serusers] how to modify mysql to get rid of problem running is_from_local()?

by lin9k＠yahoo.com

Hi George, Thanks for your reply. May I know how you modified the ser database? Ling --- George Lambson <LambsonGE(a)mtc.byu.edu> wrote: > I think there is a way to use serctl to do it, but I > have had success just directly modifying the domain > table of the SER database. > > George > > >>> <lin9k(a)yahoo.com> 3/3/2006 7:11 PM >>> > Hi, > > I'm very new to mysql although have played ser for a > while. Whenever ser.cfg call is_from_local() in > domain > module it would always fail with error log "is > local(): Realm '192.168.100.100' is not local". > > Searching from the emails people suggested to match > the domain name of the client with mysql. But, how > do > I modify mysql to make is_from_local() work? From > serctl? or Directly from mysql>? How? > > Thanks in advance, > Ling > > __________________________________________________ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam > protection around > http://mail.yahoo.com > > _______________________________________________ > Serusers mailing list > serusers(a)lists.iptel.org > http://lists.iptel.org/mailman/listinfo/serusers > > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com

18 years, 8 months

Re: [Serusers] Noisy feedback tells

by George Lambson

SER sends a 200 ok WITH a digest authentication request. The client should then send another REGISTER message with the key that it recieved in the 200 ok. SER should then get the 2nd message and send another 200 ok verifying that the client did use digect authentication. George >>> Piergiorgio Venuti <piergiorgio(a)mediaservice.net> 3/2/2006 3:08 AM >>> Hi all, I've this problem when I start my soft phone client with ser: Warning: 392 192.168.87.252:5060 "Noisy feedback tells: pid=424 req_src_ip=192.168.87.71 req_src_port=6756 in_uri=sip:ser.mydomain.pri out_uri=sip:ser.mydomain.pri via_cnt==1" I look that when my client try to register to ser, it received an 200 ok response, but my client resend a register request again and again, this loop cause a latence in my traffic. Any idea? In attach is my config file Tnx -- +----------------------------------------------------------------------+ | Ing. Piergiorgio Venuti, CCSP Email: piergiorgio(a)mediaservice.net | | System Manager Tel: +39-011-32.72.100 | | Fax: +39-011-32.46.497 | | @ Mediaservice.net S.R.L. http://mediaservice.net | | Via S.Bernardino 17 Torino | | Disclaimer: http://@Mediaservice.net/disclaimer | +----------------------------------------------------------------------+

18 years, 8 months

Re: [Serusers] how to modify mysql to get rid of problem running is_from_local()?

by George Lambson

I think there is a way to use serctl to do it, but I have had success just directly modifying the domain table of the SER database. George >>> <lin9k(a)yahoo.com> 3/3/2006 7:11 PM >>> Hi, I'm very new to mysql although have played ser for a while. Whenever ser.cfg call is_from_local() in domain module it would always fail with error log "is local(): Realm '192.168.100.100' is not local". Searching from the emails people suggested to match the domain name of the client with mysql. But, how do I modify mysql to make is_from_local() work? From serctl? or Directly from mysql>? How? Thanks in advance, Ling __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com _______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

18 years, 8 months

[Serusers] how to modify mysql to get rid of problem running is_from_local()?

by lin9k＠yahoo.com

Hi, I'm very new to mysql although have played ser for a while. Whenever ser.cfg call is_from_local() in domain module it would always fail with error log "is local(): Realm '192.168.100.100' is not local". Searching from the emails people suggested to match the domain name of the client with mysql. But, how do I modify mysql to make is_from_local() work? From serctl? or Directly from mysql>? How? Thanks in advance, Ling __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com

18 years, 8 months

Re: [Serusers] where can i find documents for ser.cfg.

by George Lambson

Here is the best and most complete information I have found, but with the module documentation I have found a few errors. These are for openser, mostly the same. http://openser.org/docs/modules/devel/ http://openser.org/dokuwiki/doku.php?id=openser_core_cookbook George >>> "wu yaqian" <wflyfox2003(a)gmail.com> 3/2/2006 8:28 PM >>> Hello,erery one I want to write ser.cfg myself.where can i find some documents about this subject. thanks a lot

18 years, 8 months

FW: [Serusers] Modify SER via serctl or DB?

by Richard C. Thompson

I have found that in some cases the serctl function doesn't function in mode 2 but does in mode 1, so I have had to write scripts that modify the database directly. As to the advantages and disadvantages, I don't know. My ser is running quite nicely now that I am not writing a lot of comments to the logs. In production, try to keep ser as quiet as possible. RickT -----Original Message----- From: serusers-bounces(a)iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Nick Hoffman Sent: Friday, March 03, 2006 2:24 AM To: seruser Mailing List Subject: [Serusers] Modify SER via serctl or DB? Hi guys, I'm going to be writing a script to make modifications to SER (Eg: add/modify/delete users/aliases, etc). I'm wondering whether it's "better" to 1) use /usr/sbin/serctl or 2) directly modify the MySQL SER database What advantages/disadvantages are there for each method? Are there any reasons why it's not advisable to directly modify the MySQL SER database to accomplish tasks such as adding a user? Thanks for your input! -- Nick e: nick.hoffman(a)altcall.com p: +61 7 5591 3588 f: +61 7 5591 6588 If you receive this email by mistake, please notify us and do not make any use of the email. We do not waive any privilege, confidentiality or copyright associated with it. _______________________________________________ Serusers mailing list serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

18 years, 8 months

[Users] Mediaproxy visible IPs

by Chris Roberts

Heya, I'm trying to understand the logic in the python side of the media proxy. Specifically, I have a user with a public IP address that is behind NAT. This would seem to be okay, except for this check: elif not caller.signedInAddress and caller.local and address[0]==caller.visibleIP: self.signIn(caller, address, data) sender = 0 destination = called.address elif not called.signedInAddress and called.local and address[0]==called.visibleIP: self.signIn(called, address, data) sender = 1 destination = caller.address I don't really understand the logic of this. Reading some more source, local is defined if the SDP header has a local media stream setting in it's m= header, but I do not understand why this would affect this part of the peer logic. If I removed this local check, my mediaproxy would be able to match incoming RTP streams from users with public IP addresses (visibleIP == public IP) behind NAT to their RTPPeer correctly. But I need to understand the implications of doing this, or whether there might be a better way for me to go? Any suggestions? Cheers, Chris. -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 268.1.1/273 - Release Date: 02/03/2006

18 years, 8 months

← Newer
1
...
41
42
43
44
45
46
47
...
51
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

sr-users March 2006