sr-users March 2012

sr-users@lists.kamailio.org

87 participants
162 discussions

Forward UAC Registration with Authentication (like Upper Registration or Passthrough Registration)

by Robert

Sorry to spam all 3 boards at the same time I know there are smart people on these lists and hoping that one might be willing to send an example config to assist a n00b to SER. I need to configure a proxy (like SBC) to listen on port X where X is not 5060. I want the UAC's registration to be forwarded (NOT REDIRECT) to the real SIP server on port 5060 The far end is not an Asterisk server so any examples of Asterisk do not work. It is not IP auth the authentication relies in the far end. Open to any solution of open source software K/OpenSIPS/OpenSBC etc. IP phone ----> open source -----> SIP server (UAC) ( PORT != 5060) ( PORT = 5060) I have tried all sorts of methods like rewritehostport / t_relay etc etc. Would uac_auth work? And if so anyone have any good examples of dynamic as I do not want to store any credentials in the open source proxy.

12 years, 8 months

Re: [SR-Users] modify FROM field in the "failure_route" block

by Alex Balashov

I am going to have to go with the "upgrade" crowd in this one. Running OpenSER 1.3 at this point is like running a libc5-based Linux distro. Almost no advice or discussion is relevant to it because there have been such tectonic, generational shifts since. -- Alex Balashov - Principal Evariste Systems LLC 235 E Ponce de Leon Ave Suite 106 Atlanta, GA 30030 Tel: +1-678-954-0671 Web: http://www.evaristesys.com/, http://www.alexbalashov.com Edson - Lists <4lists(a)gmail.com> wrote: >Please upgrade to latest stable and try again.... > >Why? If you have to ask it, than you didn't got it... > >new version === new functionalities > >99% of list support and tips are based on last stable version. 1.3 is >pretty old... > >Edson. > >Em 23/03/2012 10:06, Robert R escreveu: >> Hi, >> >> Even though when I try to use "uac_replace_from( )" in branch_route >> block I get the same error message: >> >> branch_route[2] >> { >> if ( $avp(i:204) ) >> { >> uac_replace_from("hello"); >> } >> >> } >> >> >> error message: >> >> Not starting openser: invalid configuration file! >> Mar 23 09:03:00 [7542] CRITICAL:core:yyerror: parse error in config >> file, line 623, column 26-27: Command cannot be used in the block >> Mar 23 09:03:00 [7542] ERROR:core:main: bad config file (1 errors) >> >> PS: I am running an old release of openser 1.3. >> >> Thanks, >> R >> >> >> >> >> On Thu, Mar 22, 2012 at 1:23 PM, Daniel-Constantin Mierla >> <miconda(a)gmail.com <mailto:miconda@gmail.com>> wrote: >> >> >> >> On 3/22/12 6:12 PM, Alex Balashov wrote: >> >> On 03/22/2012 01:00 PM, Robert R wrote: >> >> When I am trying to modify FROM field in the "failure_route" >> block I >> get an error message: >> >> failure_route[1] >> { >> ... >> uac_replace_from("$avp(i:204)"__); >> append_branch(); >> t_relay(); >> } >> >> Not starting openser: invalid configuration file! >> Mar 22 10:51:39 [6457] CRITICAL:core:yyerror: parse error in >> config >> file, line 662, column 32-33: Command cannot be used in the >> block >> Mar 22 10:51:39 [6457] ERROR:core:main: bad config file (1 >> errors) >> >> >> You can probably get around it this way: >> >> failure_route[1] >> { >> ... >> >> append_branch(); >> >> route(STUFF); >> t_relay(); >> } >> >> >> route[STUFF] >> { >> uac_replace_from(...); >> } >> >> indeed this should work -- it is no reason of not being usable in >> failure_route, perhaps is so from the time of development. The >> function itself is allowed in branch_route which is called from >> inside t_relay() (when t_on_branch(...) is used), therefore we can >> relax the restriction for failure_route, imo. >> >> One thing to take care of, if you use uac_replace_from() in request >> route and then in failure route, you may end in malformed format, so >> it is recommended to use it in branch_route, then the changes done >> by the function will be per each forwarded branch. >> >> Cheers, >> Daniel >> >> -- >> Daniel-Constantin Mierla >> Kamailio Advanced Training, April 23-26, 2012, Berlin, Germany >> http://www.asipto.com/index.__php/kamailio-advanced-__training/ >> <http://www.asipto.com/index.php/kamailio-advanced-training/> >> >> >> >> _________________________________________________ >> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list >> sr-users(a)lists.sip-router.org <mailto:sr-users@lists.sip-router.org> >> http://lists.sip-router.org/__cgi-bin/mailman/listinfo/sr-__users >> <http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users> >> >> >> >> >> _______________________________________________ >> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list >> sr-users(a)lists.sip-router.org >> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users > >_______________________________________________ >SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list >sr-users(a)lists.sip-router.org >http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users

12 years, 8 months

Re: [SR-Users] Authentication on loose_route();

by Alex Balashov

Clearly, you can only authenticate sequential requests corresponding to calls whose initial requests were subject to authentication. If the initial request was not authenticated, there is no reason to believe that the endpoint would support authentication of sequential requests. As to whether you should do this, that is a controversial matter. I suppose that the security-maximising approach would be to challenge all requests, but it invites problems with many endpoints. -- Alex Balashov - Principal Evariste Systems LLC 235 E Ponce de Leon Ave Suite 106 Atlanta, GA 30030 Tel: +1-678-954-0671 Web: http://www.evaristesys.com/, http://www.alexbalashov.com David <kamailio.org(a)spam.lublink.net> wrote: > > >Hello, > >Should I be requiring users to authenticate before letting >them into loose_route(); ? What about anonymous calls from E164, how do >I authenticate these calls after they have started? > >Thanks, > >David > > > >_______________________________________________ >SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list >sr-users(a)lists.sip-router.org >http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users

12 years, 8 months

Authentication on loose_route();

by David

Hello, Should I be requiring users to authenticate before letting them into loose_route(); ? What about anonymous calls from E164, how do I authenticate these calls after they have started? Thanks, David

12 years, 8 months

cached $TV is 0 in failure route

by Klaus Darilion

Hi! Is this by design? I would expect it to be either the same value as in the request route, or even better to be calculated new every time it enters the failure route. regards Klaus

12 years, 8 months

memory allocation failure while reading ca_list

by Juha Heinanen

in tls.cfg, i made ca_list to point to ca-certificates.crt file that comes with debian. when i then started sip router, i got errors Mar 19 08:45:42 test /usr/sbin/sip-proxy[28093]: ERROR: tls [tls_domain.c:447]: TLSc<default>: Unable to load CA list '/etc/ssl/certs/ca-certificates.crt' Mar 19 08:45:42 test /usr/sbin/sip-proxy[28093]: ERROR: tls [tls_domain.c:448]: load_ca_list:error:07064041:memory buffer routines:BUF_MEM_grow:malloc failure Mar 19 08:45:42 test /usr/sbin/sip-proxy[28093]: ERROR: tls [tls_domain.c:448]: load_ca_list:error:0906D041:PEM routines:PEM_read_bio:malloc failure Mar 19 08:45:42 test /usr/sbin/sip-proxy[28093]: ERROR: tls [tls_domain.c:448]: load_ca_list:error:0B084009:x509 certificate routines:X509_load_cert_crl_file:PEM lib Mar 19 08:45:42 test /usr/sbin/sip-proxy[28093]: ERROR: <core> [sr_module.c:889]: init_mod_child(): Error while initializing module tls (/usr/lib/sip-proxy/modules/tls.so) Mar 19 08:45:42 test /usr/sbin/sip-proxy[28093]: ERROR: <core> [main.c:1554]: ERROR: main: error in init_child(PROC_INT) -- exiting is that because there are too many (= 139) entries in ca-certificates.crt? if so, how to solve the problem? would it be a good idea that sip router would be default be able to handle this correctly? -- juha

12 years, 8 months

modify FROM field in the "failure_route" block

by Robert R

Hi, When I am trying to modify FROM field in the "failure_route" block I get an error message: failure_route[1] { ... uac_replace_from("$avp(i:204)"); append_branch(); t_relay(); } Not starting openser: invalid configuration file! Mar 22 10:51:39 [6457] CRITICAL:core:yyerror: parse error in config file, line 662, column 32-33: Command cannot be used in the block Mar 22 10:51:39 [6457] ERROR:core:main: bad config file (1 errors) It seems "uac_replace_from()" can not be used in the "failure_route" block. What's the correct way to modify (appending a tag) FROM field in the "failure_route" block? Thanks, R

12 years, 8 months

Search all dialogs - Kamailiio 3.0.3

by Charles Chance

Hi all, I was wondering if anyone could offer any advice please. We are using the dialog module and need to be able to find out whether another dialog exists within a particular profile and having a specific value, so that we can send the new call to the same gateway. As far as I am aware, the only way to see other dialogs from the request route is to query the database (having set db mode to realtime). This is ok, but the profile/value is not stored in the database table. Is there a way of fetching the information that I am missing, or should we just add some customisation to the module so that it also writes this information to db? Many thanks in advance, Charles

12 years, 8 months

Accessing #!define "variables" from within lua

by Asgaroth

Hi All, I am looking at writing a lua function that would really benefit from accessing "variables" that I would have defined by using the #!define statement. Is this at all possible? I've tried looking at the documentation surrounding lua and kamailio, but I cannot see how I would access it. I thought I'd ask the list to see if anyone else may have attempted this. for example, I may have #!define INTERNAL_ADDRESS 1.2.3.4 Which I subsequently use through the the routing script to refer to the internal address I am listening on. Now I would like to try and access this "variable" from a lua script. Any pointers/tips/workarounds would be greatly appreciated. Thanks

12 years, 8 months

Relaying message to Recent contact list...

by Krishna Kurapati

Hi, I am trying to relay the message to the Registered user. However, I would like to relay only to a recent contact. In case, there are multiple contact, I do not want to relay to older contacts. I am using t_relay() which is currently forking the request to all contacts. Any other way to accomplish my need? Thanks Krish Kura

12 years, 8 months

← Newer
1
...
5
6
7
8
9
10
11
...
17
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

sr-users March 2012