sr-users July 2006

sr-users@lists.kamailio.org

206 participants
414 discussions

Start a nNew thread

Fwd: [Serusers] Implementing a black list.

by CM0002＠aol.com

try this regards Christian

18 years, 4 months

[Serusers] Implementing a black list.

by Robert Zorop

Hi, I'd like to implement a blacklist to block specific destination prefixes in all calls. Is there any module to do this with mysql?,. Or please can someone help me and drop me a line on how can i do this kind of thing with ser.?. My idea is to have a list of the prefixes to block, and if the number dialed matches one of those prefixes drop the call. Is it possible? Thanks in advance.

18 years, 4 months

[Users] Ack is not received the openser, when the phone is lefted up. its hung up after...32 sec for calee

by raviprakash sunkara

Hi Users, I installed Openser server and Using the Nathelper with RtpProxy . The openser server and RtpProxy are located in the Same system with ip add (192.168.2.2) , And Public IP address is xx.xxx.xxx.xxx., openSER sip_doamin name is xx.xxx.xxx.xxx Ours Network connect for openser System is given below modem------xx.xxx.xxx.xxx.-------------> router(firewall) ---------------------------------> server 1 |________________ > server 2 | |_________________> server 3 ( openser and rtp ) For Testing i'm X-lite softphones with different network of openser system ( out the NAT ) When made the call from one softphone to other softphones.. When caller calls to callee , when the callee is lefted up the phone after 32 seconds the phone hungups automatically. And OpenSER is Not receive the Ack, when the invite is response and Softphones are Ringing after it lefted up . For callee only hung up And Missed Call and Ignore Calls are working Fine ... I gucess is problem in Firewall setting in Router and System FireWall.setting . Can Any one tell me How to resolve my problem ... here is My openser.cfg route{ # ----------------------------------------------------------------- # Sanity Check Section # ----------------------------------------------------------------- if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); exit; }; if (msg:len >= 2048 ) { sl_send_reply("513", "Message too big"); exit; }; # ----------------------------------------------------------------- # NAT detection # ----------------------------------------------------------------- route(2); # ----------------------------------------------------------------- # Record Route Section # ----------------------------------------------------------------- if (!method=="REGISTER") record_route(); # ----------------------------------------------------------------- # Loose Route Section # ----------------------------------------------------------------- if (loose_route()) { append_hf("P-hint: rr-enforced\r\n"); if ((method=="INVITE" || method=="REFER") && !has_totag()) { sl_send_reply("403", "Forbidden"); return; }; if (method=="INVITE") { if (!proxy_authorize("xx.xxx.xxx.xxx","subscriber")) { proxy_challenge("xx.xxx.xxx.xxx","0"); return; } else if (!check_from()) { sl_send_reply("403", "Use From=ID"); return; }; consume_credentials(); }; route(1); }; # ----------------------------------------------------------------- # Call Type Processing Section # ----------------------------------------------------------------- if (!is_uri_host_local()) { if (is_from_local() || allow_trusted()) { route(4); route(1); } else { sl_send_reply("403", "Forbidden"); }; }; if (method=="ACK") { route(1); return; } else if (method=="CANCEL") { route(1); return; } else if (method=="INVITE") { route(5); return; } else if (method=="REGISTER") { route(4); return; }; lookup("aliases"); if (!is_uri_host_local()) { route(4); route(1); return; }; if (!lookup("location")) { sl_send_reply("404", "User Not Found"); exit; }; append_hf("P-hint: usrloc applied\r\n"); route(1); } route[1] { if (subst_uri('/(sip:.*);nat=yes/\1/')){ setflag(6); }; if (isflagset(5)||isflagset(6)) { route(3); } if (!t_relay()) { sl_reply_error(); }; exit; } route[2]{ force_rport(); if (nat_uac_test("19")) { if (method=="REGISTER") { fix_nated_register(); } else { fix_nated_contact(); }; setflag(5); }; } route[3] { if (is_method("BYE|CANCEL")) { unforce_rtp_proxy(); } else if (is_method("INVITE")){ force_rtp_proxy(); t_on_failure("1"); }; if (isflagset(5)) search_append('Contact:.*sip:[^>[:cntrl:]]*', ';nat=yes'); t_on_reply("1"); } route[4] { if (!www_authorize("xx.xxx.xxx.xxx", "subscriber")) { www_challenge("xx.xxx.xxx.xxx", "0"); exit; }; if (isflagset(5)) { setflag(6); # if you want OPTIONS natpings uncomment next # setflag(7); }; save("location"); if (!lookup("location")) { sl_send_reply("401", "Unauthorized"); }; append_hf("P-hint: usrloc applied\r\n"); } route[5] { # ----------------------------------------------------------------- # INVITE Message Handler # ----------------------------------------------------------------- if (!allow_trusted()) { if (!proxy_authorize("xx.xxx.xxx.xxx","subscriber")) { proxy_challenge("xx.xxx.xxx.xxx","0"); return; } else if (!check_from()) { sl_send_reply("403", "Use From=ID"); return; }; }; lookup("aliases"); if (!is_uri_host_local()) { route(1); return; }; if (uri=~"^sip:[0-9]@") { lookup("aliases"); lookup("location"); route(1); return; }; if(!lookup("location")){ sl_send_reply("404", "User Not Found"); return; }; route(1); } failure_route[1] { if (isflagset(6) || isflagset(5)) { unforce_rtp_proxy(); } } onreply_route[1] { if ((isflagset(5) || isflagset(6)) && status=~"(183)|(2[0-9][0-9])") { force_rtp_proxy(); } search_append('Contact:.*sip:[^>[:cntrl:]]*', ';nat=yes'); if (isflagset(6)) { fix_nated_contact(); } exit; } -- Thanks and Regards with cheers Sunkara Ravi Prakash (Voip Developer) Hyperion Technology Kondapur, Hi-tech city, Hyderabad. www.hyperion-tech.com +91-9985077535

18 years, 4 months

RE: [Serusers] Open source GSM/CDMA network

by Aimable Habiyakare

Think about it in this way. Each GSM (don't know about CDMA's) Base Transceiver Station costs around 100,000 USD to set up, probably much more for CDMA So if what I said can be technically implemented we can have a far cheaper mobile infrastructure (not talking about the licensing stuff) If that is applied to the other equipments involved in a mobile network (like the BSC, HLR and the MSC), think how cheap would that be. I am sure there are many more advantages of setting up such a system. Am not also a GSM/CDMA guy but I happened to work for an ISP that is also offering mobile phone services and that made me ask if it is possible to do it. Thanks ________________________________ From: Greger V. Teigre [mailto:greger@teigre.com] Sent: Monday, July 10, 2006 11:59 AM To: Aimable Habiyakare Cc: serusers(a)iptel.org Subject: Re: [Serusers] Open source GSM/CDMA network I'm very curious to know why you want to do that? While reusing SIM-identities on various access control points make sense if you have customers with SIM (a WLAN/3G phone could then easily roam on a service provider WLAN footprint, pending support for it in the phone, i.e. pulling out SIM-data to be used in 802.1x), I cannot really see the reason for doing what you propose?! (I'm not a GSM/CDMA person, so pardon me for being ignorant) g-) Aimable Habiyakare wrote: Hi all serusers; I have been using SER for a couple of years now (from 2004) and I have been really impressed. It has landed me more than 2 good jobs and when combined with Asterisk, you ask yourself what Telcos without it do!!!! Given all SIP related software and ideas that are there, I have been asking myself this question: Is it possible to design a GSM/CDMA Base Transceiver Station using Software Defined Radio (for signal acquisition and processing + some SER functions,) A GSM switch (done through SER and/or Asterisk) A GSM HLR,(Home Location Register and VLR, supposing that SER with GSM auth module act as such) which is I think a set of databases and some interfaces. This may sound stupid but I thought maybe someone has thought abt sth like that? The idea was provoked by these 2 links http://www.mah.priv.at/siptrust/doit/sim-summary.html http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/gsm_auth/ what do you think? Thanks ________________________________ _______________________________________________ Serusers mailing list Serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers

18 years, 4 months

[Users] [Fwd: [Serdev] CVS:commitlog: sip_router/parser case_acce.h case_allo.h case_cont.h case_refe.h case_reje.h case_requ.h case_sess.h hf.c hf.h keys.h msg_parser.c parse_hname2.c]

by Klaus Darilion

I've just read this on the ser list - does openser allready recognizes all short version of header names? regards klaus -------- Original Message -------- Subject: [Serdev] CVS:commitlog: sip_router/parser case_acce.h case_allo.h case_cont.h case_refe.h case_reje.h case_requ.h case_sess.h hf.c hf.h keys.h msg_parser.c parse_hname2.c Date: Mon, 19 Jun 2006 01:15:26 +0200 From: Tomas Mandys <tomas.mandys(a)iptel.org> To: serdev(a)iptel.org tma0 2006/06/19 01:15:25 CEST SER CVS Repository Modified files: parser case_acce.h case_allo.h case_cont.h case_refe.h case_requ.h hf.c hf.h keys.h msg_parser.c parse_hname2.c Added files: parser case_reje.h case_sess.h Log: - adjusted compact headers. There were missing compact equivalents for Subject, Refer-To and completely missing Session-Expires, Accept-Contact, etc. support. Currently I've implemented both compact header and case switches to assign enumeration type. No next parsing is processed, but probably will be done, good candidate e.g. Session-Expires. Now e.g. textops hf_value correctly recognizes "Session-Expires" and "x" as equal headers. Revision Changes Path 1.6 +31 -7 sip_router/parser/case_acce.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_acce.h… 1.7 +27 -6 sip_router/parser/case_allo.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_allo.h… 1.11 +19 -6 sip_router/parser/case_cont.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_cont.h… 1.3 +29 -9 sip_router/parser/case_refe.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_refe.h… 1.1 +69 -0 sip_router/parser/case_reje.h (new) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_reje.h… 1.9 +42 -5 sip_router/parser/case_requ.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_requ.h… 1.1 +72 -0 sip_router/parser/case_sess.h (new) http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/case_sess.h… 1.27 +17 -9 sip_router/parser/hf.c http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/hf.c.diff?r… 1.24 +17 -1 sip_router/parser/hf.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/hf.h.diff?r… 1.16 +32 -5 sip_router/parser/keys.h http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/keys.h.diff… 1.52 +47 -33 sip_router/parser/msg_parser.c http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/msg_parser.… 1.25 +39 -25 sip_router/parser/parse_hname2.c http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/sip_router/parser/parse_hname… _______________________________________________ Serdev mailing list Serdev(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serdev

18 years, 4 months

RE: [Serusers] prevent INVITE without REGISTERing

by İlker Aktuna (Koç.net)

Hi, Thanks for your reply. Unfortunately I couldn't understand that configuration. What do you mean by (!src_ip=="other") ? What is "other" ? What does t_replicate() do ? What does proxy_authorize() do ? Thanks, ilker -----Original Message----- From: serusers-bounces(a)lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Victor Stanescu Sent: Monday, July 10, 2006 1:49 PM Cc: serusers(a)iptel.org Subject: Re: [Serusers] prevent INVITE without REGISTERing Please read "domain" instead of "gtstelecom.ro": www_authorize("domain", "subscriber") and proxy_authorize("domain", "subscriber"), otherwise the code fragment will not be correct. I forgot to replace with a generic name. Victor Stanescu wrote: > I think it is easier to force him to authenticate the INVITE. If he is > able to authenticate the INVITE, why do you care if he is registered > or not? > > if (method=="REGISTER") { > if(!src_ip=="other") { > if (!www_authorize("gtstelecom.ro", "subscriber")) { > www_challenge("domain", "0"); > break; > }; > save("location"); > log("Replicating REGISTER\n"); > t_replicate("other", "5060"); > } else { > save("location"); > }; > break; > } else { > # this is an INVITE > if (!proxy_authorize("gtstelecom.ro", "subscriber")) { > proxy_challenge("domain", "1"); > break; > }; > # route the call > ... > }; > > İlker Aktuna (Koç.net) wrote: >> >> Hi all, >> >> Is it possible to prevent any user calling without registering ? What >> is the best way to do this ? >> I guess I'll have to check if the source URI exists in location table. >> What is the easiest way to do this ? >> >> If there is a more robust way to do it, please suggest... >> >> Thanks, >> ilker >> >> >> >> <http://387555.sigclick.mailinfo.com/sigclick/000F0500/07044803/01000 >> 749/0023725214.jpg> >> >> _____________________________________________________________________ >> _____________________________________________________________________ >> ___ >> >> Bu e-posta mesaji kisiye ozel olup, gizli bilgiler iceriyor olabilir. >> Eger bu e-posta mesaji size yanlislikla ulasmissa, icerigini hic bir >> sekilde kullanmayiniz ve ekli dosyalari acmayiniz. Bu durumda lutfen >> e-posta mesajini kullaniciya hemen geri gonderiniz ve tum >> kopyalarini mesaj kutunuzdan siliniz. Bu e-posta mesaji, hic bir >> sekilde, herhangi bir amac icin cogaltilamaz, yayinlanamaz ve para >> karsiligi satilamaz. Bu e-posta mesaji viruslere karsi anti-virus >> sistemleri tarafindan taranmistir. Ancak yollayici, bu e-posta >> mesajinin - virus koruma sistemleri ile kontrol ediliyor olsa bile - >> virus icermedigini garanti etmez ve meydana gelebilecek zararlardan >> dogacak hicbir sorumlulugu kabul etmez. >> This message is intended solely for the use of the individual or >> entity to whom it is addressed , and may contain confidential >> information. If you are not the intended recipient of this message or >> you receive this mail in error, you should refrain from making any >> use of the contents and from opening any attachment. In that case, >> please notify the sender immediately and return the message to the >> sender, then, delete and destroy all copies. This e-mail message, can >> not be copied, published or sold for any reason. This e-mail message >> has been swept by anti-virus systems for the presence of computer >> viruses. In doing so, however, sender cannot warrant that virus or >> other forms of data corruption may not be present and do not take any >> responsibility in any occurrence. >> _____________________________________________________________________ >> _____________________________________________________________________ >> ___ >> >> >> >> --------------------------------------------------------------------- >> --- >> >> _______________________________________________ >> Serusers mailing list >> Serusers(a)lists.iptel.org >> http://lists.iptel.org/mailman/listinfo/serusers > _______________________________________________ > Serusers mailing list > Serusers(a)lists.iptel.org > http://lists.iptel.org/mailman/listinfo/serusers _______________________________________________ Serusers mailing list Serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers <http://387555.sigclick.mailinfo.com/sigclick/05090007/04014D06/0406014E/037…> _____________________________________________________________________________________________________________________________________________ Bu e-posta mesaji kisiye ozel olup, gizli bilgiler iceriyor olabilir. Eger bu e-posta mesaji size yanlislikla ulasmissa, icerigini hic bir sekilde kullanmayiniz ve ekli dosyalari acmayiniz. Bu durumda lutfen e-posta mesajini kullaniciya hemen geri gonderiniz ve tum kopyalarini mesaj kutunuzdan siliniz. Bu e-posta mesaji, hic bir sekilde, herhangi bir amac icin cogaltilamaz, yayinlanamaz ve para karsiligi satilamaz. Bu e-posta mesaji viruslere karsi anti-virus sistemleri tarafindan taranmistir. Ancak yollayici, bu e-posta mesajinin - virus koruma sistemleri ile kontrol ediliyor olsa bile - virus icermedigini garanti etmez ve meydana gelebilecek zararlardan dogacak hicbir sorumlulugu kabul etmez. This message is intended solely for the use of the individual or entity to whom it is addressed , and may contain confidential information. If you are not the intended recipient of this message or you receive this mail in error, you should refrain from making any use of the contents and from opening any attachment. In that case, please notify the sender immediately and return the message to the sender, then, delete and destroy all copies. This e-mail message, can not be copied, published or sold for any reason. This e-mail message has been swept by anti-virus systems for the presence of computer viruses. In doing so, however, sender cannot warrant that virus or other forms of data corruption may not be present and do not take any responsibility in any occurrence. _____________________________________________________________________________________________________________________________________________

18 years, 4 months

[Serusers] prevent INVITE without REGISTERing

by İlker Aktuna (Koç.net)

Hi all, Is it possible to prevent any user calling without registering ? What is the best way to do this ? I guess I'll have to check if the source URI exists in location table. What is the easiest way to do this ? If there is a more robust way to do it, please suggest... Thanks, ilker <http://387555.sigclick.mailinfo.com/sigclick/000F0500/07044803/01000749/002…> _____________________________________________________________________________________________________________________________________________ Bu e-posta mesaji kisiye ozel olup, gizli bilgiler iceriyor olabilir. Eger bu e-posta mesaji size yanlislikla ulasmissa, icerigini hic bir sekilde kullanmayiniz ve ekli dosyalari acmayiniz. Bu durumda lutfen e-posta mesajini kullaniciya hemen geri gonderiniz ve tum kopyalarini mesaj kutunuzdan siliniz. Bu e-posta mesaji, hic bir sekilde, herhangi bir amac icin cogaltilamaz, yayinlanamaz ve para karsiligi satilamaz. Bu e-posta mesaji viruslere karsi anti-virus sistemleri tarafindan taranmistir. Ancak yollayici, bu e-posta mesajinin - virus koruma sistemleri ile kontrol ediliyor olsa bile - virus icermedigini garanti etmez ve meydana gelebilecek zararlardan dogacak hicbir sorumlulugu kabul etmez. This message is intended solely for the use of the individual or entity to whom it is addressed , and may contain confidential information. If you are not the intended recipient of this message or you receive this mail in error, you should refrain from making any use of the contents and from opening any attachment. In that case, please notify the sender immediately and return the message to the sender, then, delete and destroy all copies. This e-mail message, can not be copied, published or sold for any reason. This e-mail message has been swept by anti-virus systems for the presence of computer viruses. In doing so, however, sender cannot warrant that virus or other forms of data corruption may not be present and do not take any responsibility in any occurrence. _____________________________________________________________________________________________________________________________________________

18 years, 4 months

Re: [Serusers] Multiple SIP server

by Nhadie

Hi Sir, I tired using the config the only prob i have now is that when I add this lines: t_replicate("10.10.10.2", "5060"); t_replicate("10.10.10.3", "5060"); it gives me error that ERROR: t_newtran: transaction already in process So I tried removing the second t_replicate and it work. but unfortunately i need to replicate three sip servers, is there any workaround? if I try replicating 10.10.10.1 to 10.10.10.2 then replicate 10.10.10.2 to 10.10.10.3 then 10.10.10.3 to 10.10.10.1, would that work? Tnx! Regards, Nhadie The problem may be here : "To avoid DNS lookups, don't enclose IP addresses in quotes. Otherwise, reverse DNS lookup can be performed to compare to host aliases. " REGISTER block @ 10.10.10.1 --------------------------- if ((src_ip == 10.10.10.2) || (src_ip == 10.10.10.3)) { save_memory("location"); }; ... ... (Do what you have to do with authentication) ... ... if ((!src_ip == 10.10.10.2) && (src_ip == 10.10.10.3)) { t_replicate("10.10.10.2", "5060"); t_replicate("10.10.10.3", "5060"); }; Similar block @ the other boxes... --- K.Marneris(a)otenet.gr ----- Original Message ----- From: "Nhadie Ramos" <nhadie(a)tbgi.net.ph> To: <K.Marneris(a)otenet.gr> Cc: <serusers(a)iptel.org> Sent: 06 July 2006 05:29 Subject: Re: [Serusers] Multiple SIP server > Hi Sir, > > i looked for sample on the net and tried it but still didn't work, > here's the sample config: > I have 3 SIP 10.10.10.1, 10.10.10.2, 10.10.10.3 > > On 10.10.10.2 and 10.10.10.3 I added this under if (method=="REGISTER") { > > if (!src_ip==10.10.10.1) { > if (isflagset(8)) {xlog("L_INFO", "Register: Replicating to Main > SIP Servern");}; > save("location"); > t_replicate("10.10.10.1", "5060"); > }; > > if (isflagset(8)) {xlog("L_INFO", "Register: Authorized, saving > locationn");}; > save_memory("location"); > break; > > > I did not do any changes on the main sip 10.10.10.1. What did I do wrong? > Regards, > Nhadie ________________________________________________ Message sent using UebiMiau 2.7

18 years, 4 months

[Serusers] Open source GSM/CDMA network

by Aimable Habiyakare

Hi all serusers; I have been using SER for a couple of years now (from 2004) and I have been really impressed. It has landed me more than 2 good jobs and when combined with Asterisk, you ask yourself what Telcos without it do!!!! Given all SIP related software and ideas that are there, I have been asking myself this question: Is it possible to design a GSM/CDMA Base Transceiver Station using Software Defined Radio (for signal acquisition and processing + some SER functions,) A GSM switch (done through SER and/or Asterisk) A GSM HLR,(Home Location Register and VLR, supposing that SER with GSM auth module act as such) which is I think a set of databases and some interfaces. This may sound stupid but I thought maybe someone has thought abt sth like that? The idea was provoked by these 2 links http://www.mah.priv.at/siptrust/doit/sim-summary.html http://cvs.berlios.de/cgi-bin/viewcvs.cgi/ser/gsm_auth/ what do you think? Thanks

18 years, 4 months

[Users] SQL digest authentication

by Fatih Cerit

Hi all Is it possible to authenticate both username,realm,password and alias with module authdb. Is an option like use_domain ?? Thanks cerit

18 years, 4 months

← Newer
1
...
30
31
32
33
34
35
36
...
42
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

sr-users July 2006