sr-users June 2014

sr-users@lists.kamailio.org

86 participants
144 discussions

by Noah Mehl

I have managed to install Kamailio and Siremis 4.x, but I have noticed that neither Kamaliio or Siremis come with a sample config that makes sense for Siremis (as far as I can tell). For instance, if I want to use LCR with dispatchers, the sample Kamilio configs don’t have the dispatcher module loaded or configured. Am I missing something? Can someone please share theirs? Thanks! ~Noah

10 years, 3 months

Warning message on SIP websocket

by Alex Villacís Lasso

Just a quick question. What is supposed to be wrong with the below message? Jun 23 12:47:16 elx /usr/sbin/kamailio[20891]: ERROR: <core> [parser/parse_fline.c:243]: parse_first_line(): parse_first_line: bad message (offset: 22) Jun 23 12:47:16 elx /usr/sbin/kamailio[20891]: ERROR: <core> [parser/msg_parser.c:705]: parse_msg(): ERROR: parse_msg: message=<HTTP/1.1 101 Switching Protocols#015#012Via: SIP/2.0/TLS 192.168.3.2:58657#015#012Sec-WebSocket-Protocol: sip#015#012Upgrade: websocket#015#012Connection: upgrade#015#012Sec-WebSocket-Accept: Er/CgVyBNzVGREBmt+w3FTff8s4=#015#012Server: kamailio (4.1.4 (x86_64/linux))#015#012Content-Length: 0#015#012#015#012>

10 years, 3 months

Plz help: MSILO on TLS + cert based client auth enabled server

by Marc M.

Hi, I have a SIP server with TLS + client certificate based authentication. The server is listening for SIP(UDP) on port 5060, and for SIPS(TLS) on port 5061) The client certificate based authentication is enforced on port 5061. I would like to fire up MSILO and face now a strange problem: At each REGISTER, the stored messages get dumped. Dumped messages get sent to the clients from senders logged in over port 5060(UDP) as SIP:xxxxxxxxx@xx.xx.xx.xx however Dumped messages are NOT sent to clients from senders logged in on port 5061(TLS) as SIPS:xxxxxxxx@xx.xx.xx.xx It looks like the messages get dumped so M-dump() is working, but they will never enter the route. I would assume TLS is stopping the dumped messages to entering the route logic. I would either 1. somehow force m_dump() to pipe the messages over SIP(and not SIPS), or 2. disable client auth for messages recieved from local ip Can you help me how to proceed? What would be the correct approach? Can you help me with either 1 or 2. You help is greatly appreciated!!! Marc

10 years, 3 months

Only a redirect server

by Jack Smith

Dear friends, Just new to this mailing list, new to Kamailio, and new to running a sip server. I would like to try only a redirect server. I had a look at http://sourceforge.net/p/openser/code/HEAD/tree/trunk/examples/redirect.cfg which was friendly, but then the default file kamailio.cfg looked frightening ! Could someone help me set up a minimal Kamailio installation only to handle state-less redirect? Best, Jack

10 years, 3 months

Many instances of "new URI shorter than old URI" in log

by Alex Villacís Lasso

Jun 27 15:28:42 elx /usr/sbin/kamailio[25189]: ERROR: uac [replace.c:590]: restore_uri(): new URI shorter than old URI Jun 27 15:28:44 elx /usr/sbin/kamailio[25187]: ERROR: uac [replace.c:590]: restore_uri(): new URI shorter than old URI Jun 27 15:28:48 elx /usr/sbin/kamailio[25188]: ERROR: uac [replace.c:590]: restore_uri(): new URI shorter than old URI Jun 27 15:28:49 elx /usr/sbin/kamailio[25188]: ERROR: uac [replace.c:590]: restore_uri(): new URI shorter than old URI I am not really sure of what this message is supposed to indicate. It looks something related to uac_restore_[from,to] functions, but some debugging statements just before the use show that the message is not originating from there. This message is showing up hundreds of times per day.

10 years, 4 months

Would like to upgrade to 4.1.4+wheezy -- when will this be available?

by Will Ferrer

Hi We would like to upgrade or debian instances to the apt repo for 4.1.4+wheezy. Is this release soon to be stable and ready for use? We would like to upgrade so we can get around the memory leak that arises when many reloads occur as described here: http://sip-router.org/tracker/index.php?do=details&task_id=436 Thank you very much for any advice any one can offer us. All the best. Will Ferrer

10 years, 4 months

MSILO - dumped messages get duplicated

by Marc M.

Hi, I have a Kamailio 3.2 setup up and running. Recently I configured msilo for offline message store. Essentialy the setup runs fine. Messages to users without location info getting stored. In case the user has location info, but cannot be reached, I made failover_route, so the messages getting stored in this case too. Messages getting dumped at the next REGISTER. However, I have a group of new mobile clients, with unstable connection. It happens many times that they send a REGISTER, but the connection brakes afterwards. It this case the message is getting dumped, but since it cannot be delivered, it runs on the failover_route which stores the message again. However, the previous message is not removed from the db, so the same message is now twice in the db. Next time the message either gets delivered in double, or in case of a new failure, it gets stored 2x2= four times. I need to avoid this duplicates but still make sure the message get delivered sooner or later. Any help is highly appreciated. Here is my routing table: thanks Marc ####### Routing Logic ######## # Main SIP request routing logic # - processing of any incoming SIP request starts with this route route { # per request initial checks route(REQINIT); # NAT detection route(NAT); # handle requests within SIP dialogs route(WITHINDLG); ### only initial requests (no To tag) # CANCEL processing if (is_method("CANCEL")) { if (t_check_trans()) t_relay(); exit; } if (is_method("MESSAGE")) { log(1,"-------------------------------------------------------->WE HAVE A NEW MESSAGE\n"); route(MSILO_MESSAGE); } t_check_trans(); # authentication route(AUTH); # record routing for dialog forming requests (in case they are routed) # - remove preloaded route headers remove_hf("Route"); if (is_method("INVITE|SUBSCRIBE")) record_route(); # account only INVITEs if (is_method("INVITE")) { setflag(FLT_ACC); # do accounting } # dispatch requests to foreign domains route(SIPOUT); ### requests for my local domains # handle presence related requests route(PRESENCE); # handle registrations route(REGISTRAR); if ($rU==$null) { # request with no Username in RURI sl_send_reply("484","Address Incomplete"); exit; } # dispatch destinations to PSTN route(PSTN); # user location service route(LOCATION); route(RELAY); } route[RELAY] { #!ifdef WITH_NAT if (check_route_param("nat=yes")) { setbflag(FLB_NATB); } if (isflagset(FLT_NATS) || isbflagset(FLB_NATB)) { route(RTPPROXY); } #!endif /* example how to enable some additional event routes */ if (is_method("INVITE")) { #t_on_branch("BRANCH_ONE"); t_on_reply("REPLY_ONE"); t_on_failure("FAIL_ONE"); } if (!t_relay()) { sl_reply_error(); } exit; } ##storing offline messages route[MSILO_MESSAGE]{ if (lookup("location")){ t_on_failure("FAIL_MESSAGE"); t_relay(); xlog("L_NOTICE","---------------------------------MI: ($mi), MB: ($mb)\n"); }else{ xlog("L_NOTICE","------------------MESSAGE PROCESSING: location not found, storing offline message ID: ($ru)\n"); m_store("$ru"); sl_send_reply("202", "ACCEPTED"); xlog("L_NOTICE","------------------MESSAGE PROCESSING: location not found, stored offline message ID: ($ru)\n"); }; exit; }; failure_route[FAIL_MESSAGE]{ xlog("L_NOTICE","------------------MESSAGE PROCESSING: user cannot be reached, storing offline message ID: ($ou)\n"); m_store("$ou"); t_reply("202", "ACCEPTED"); xlog("L_NOTICE","------------------MESSAGE PROCESSING: user cannot be reached, stored offline message ID: ($ou)\n"); exit; } # Per SIP request initial checks route[REQINIT] { #!ifdef WITH_ANTIFLOOD # flood dection from same IP and traffic ban for a while # be sure you exclude checking trusted peers, such as pstn gateways # - local host excluded (e.g., loop to self) if(src_ip!=myself) { if($sht(ipban=>$si)!=$null) { # ip is already blocked xdbg("request from blocked IP - $rm from $fu (IP:$si:$sp)\n"); exit; } if (!pike_check_req()) { xlog("L_ALERT","ALERT: pike blocking $rm from $fu (IP:$si:$sp)\n"); $sht(ipban=>$si) = 1; exit; } } #!endif if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); exit; } if(!sanity_check("1511", "7")) { xlog("Malformed SIP message from $si:$sp\n"); exit; } } # Handle requests within SIP dialogs route[WITHINDLG] { if (has_totag()) { # sequential request withing a dialog should # take the path determined by record-routing if (loose_route()) { if (is_method("BYE")) { setflag(FLT_ACC); # do accounting ... setflag(FLT_ACCFAILED); # ... even if the transaction fails } route(RELAY); } else { if (is_method("SUBSCRIBE") && uri == myself) { # in-dialog subscribe requests route(PRESENCE); exit; } if ( is_method("ACK") ) { if ( t_check_trans() ) { # no loose-route, but stateful ACK; # must be an ACK after a 487 # or e.g. 404 from upstream server t_relay(); exit; } else { # ACK without matching transaction ... ignore and discard exit; } } sl_send_reply("404","Not here"); } exit; } } # Handle SIP registrations route[REGISTRAR] { if (is_method("REGISTER")) { if(isflagset(FLT_NATS)) { setbflag(FLB_NATB); # uncomment next line to do SIP NAT pinging setbflag(FLB_NATSIPPING); } if (!save("location")) sl_reply_error(); # MSILO - dumping user's offline messages m_dump(); log(1,"-------------------------MESSAGE PROCESSING: dumping offline messages\n"); exit; } } # USER location service route[LOCATION] { #!ifdef WITH_ALIASDB # search in DB-based aliases alias_db_lookup("dbaliases"); #!endif if (!lookup("location")) { switch ($rc) { case -1: case -3: t_newtran(); t_reply("404", "Not Found"); exit; case -2: sl_send_reply("405", "Method Not Allowed"); exit; } } # when routing via usrloc, log the missed calls also if (is_method("INVITE")) { setflag(FLT_ACCMISSED); } } # Presence server route route[PRESENCE] { if(!is_method("PUBLISH|SUBSCRIBE")) return; #!ifdef WITH_PRESENCE if (!t_newtran()) { sl_reply_error(); exit; }; if(is_method("PUBLISH")) { handle_publish(); t_release(); } else if( is_method("SUBSCRIBE")) { handle_subscribe(); t_release(); } exit; #!endif # if presence enabled, this part will not be executed if (is_method("PUBLISH") || $rU==$null) { sl_send_reply("404", "Not here"); exit; } return; } # Authentication route route[AUTH] { #!ifdef WITH_AUTH if (is_method("REGISTER")) { # authenticate the REGISTER requests (uncomment to enable auth) if (!www_authorize("$td", "subscriber")) { www_challenge("$td", "0"); exit; } if ($au!=$tU) { sl_send_reply("403","Forbidden auth ID"); exit; } } else { #!ifdef WITH_IPAUTH if(allow_source_address()) { # source IP allowed return; } #!endif # authenticate if from local subscriber if (from_uri==myself) { if (!proxy_authorize("$fd", "subscriber")) { proxy_challenge("$fd", "0"); exit; } if (is_method("PUBLISH")) { if ($au!=$tU) { sl_send_reply("403","Forbidden auth ID"); exit; } } else { if ($au!=$fU) { sl_send_reply("403","Forbidden auth ID"); exit; } } consume_credentials(); # caller authenticated } else { # caller is not local subscriber, then check if it calls # a local destination, otherwise deny, not an open relay here if (!uri==myself) { sl_send_reply("403","Not relaying"); exit; } } } #!endif return; } # Caller NAT detection route route[NAT] { #!ifdef WITH_NAT force_rport(); if (nat_uac_test("19")) { if (method=="REGISTER") { fix_nated_register(); } else { fix_nated_contact(); } setflag(FLT_NATS); } #!endif return; } # RTPProxy control route[RTPPROXY] { #!ifdef WITH_NAT if (is_method("BYE")) { unforce_rtp_proxy(); } else if (is_method("INVITE")){ rtpproxy_offer(); } if (!has_totag()) add_rr_param(";nat=yes"); #!endif return; } # Routing to foreign domains route[SIPOUT] { if (!uri==myself) { append_hf("P-hint: outbound\r\n"); route(RELAY); } } # PSTN GW routing route[PSTN] { #!ifdef WITH_PSTN # check if PSTN GW IP is defined if (strempty($sel(cfg_get.pstn.gw_ip))) { xlog("SCRIPT: PSTN rotuing enabled but pstn.gw_ip not defined\n"); return; } # route to PSTN dialed numbers starting with '+' or '00' # (international format) # - update the condition to match your dialing rules for PSTN routing if(!($rU=~"^(\+|00)[1-9][0-9]{3,20}$")) return; # only local users allowed to call if(from_uri!=myself) { sl_send_reply("403", "Not Allowed"); exit; } $ru = "sip:" + $rU + "@" + $sel(cfg_get.pstn.gw_ip); route(RELAY); exit; #!endif return; } # XMLRPC routing #!ifdef WITH_XMLRPC route[XMLRPC] { # allow XMLRPC from localhost if ((method=="POST" || method=="GET") && (src_ip==127.0.0.1)) { # close connection only for xmlrpclib user agents (there is a bug in # xmlrpclib: it waits for EOF before interpreting the response). if ($hdr(User-Agent) =~ "xmlrpclib") set_reply_close(); set_reply_no_connect(); dispatch_rpc(); exit; } send_reply("403", "Forbidden"); exit; } #!endif # Sample branch router branch_route[BRANCH_ONE] { xdbg("new branch at $ru\n"); } # Sample onreply route onreply_route[REPLY_ONE] { xdbg("incoming reply\n"); #!ifdef WITH_NAT if ((isflagset(FLT_NATS) || isbflagset(FLB_NATB)) && status=~"(183)|(2[0-9][0-9])") { rtpproxy_answer(); } if (isbflagset("6")) { fix_nated_contact(); } #!endif } # Sample failure route failure_route[FAIL_ONE] { #!ifdef WITH_NAT if (is_method("INVITE") && (isbflagset(FLB_NATB) || isflagset(FLT_NATS))) { unforce_rtp_proxy(); } #!endif if (t_is_canceled()) { exit; } # uncomment the following lines if you want to block client # redirect based on 3xx replies. ##if (t_check_status("3[0-9][0-9]")) { ##t_reply("404","Not found"); ## exit; ##} # uncomment the following lines if you want to redirect the failed # calls to a different new destination ##if (t_check_status("486|408")) { ## sethostport("192.168.2.100:5060"); ## append_branch(); ## # do not set the missed call flag again ## t_relay(); ##} }

10 years, 4 months

RTP to SRTP encryption with Kamailio.

by Dani Kamailio

Hello, I need to build a VoIP system who receives SIP and RTP traffic in a public IP and encrypt both of them with TLS and SRTP respectively. The main point is to have security inside of the local network (I know it may sound unuseful). So, I was trying to build the whole system in Kamailio but I got stucked with the RTP to SRTP bridge and I do not really know how to do it. I know that there are some modules like rtpproxy-ng and rtpengine as media relay that can handle SRTP... any ideas? I just want to make sure that I am in the right way. If it could be done in Kamailio, have I to write the code to encrypt RTP, like the algorithm or something? Would it be convenient to send the RTP packets to Asterisk? (and Asterisk would somehow encrypt them?) I am pretty new with all of this, any help will be apreciate, thank you.

10 years, 4 months

FW: Module TOPOH: Does not unmask CALL-ID on request BYE in one direction

by Samuel F.

Hi, We are setting up a Kamailio Proxy with the Topoh module in place masking everything including CALL-ID. It seems to be masking everything just fine except for CALL-ID in BYE requests (verified with PCAPs) when received from downstream. Upstream works fine. Looking at the source code for the module 4.1.2 we see the unmasking being done like this: if(dialog) { /* dialog request */ th_unmask_ruri(&msg); th_unmask_route(&msg); th_unmask_refer_to(&msg); if(direction==1) { th_unmask_callid(&msg); } } It only seems to be unmasking for one direction. From my understanding BYE can be initated from both directions? Might be something I don’t understand here how the source code works but I wanted to ask for any pointers of help here.. been troubleshooting this for a good while now. Kind regards, Samuel

10 years, 4 months

How to check message queue (buffer) in Kamailio

by AliReza Khoshgoftar Monfared

Hi, I had another simple question: In a kamailio server (proxy), how do I check the number of messages currently waiting for processing? Is there a variable that I can monitor, say, if I want to make a routing decision in my config based on the number of messages in the queue? Also, is it possible to get a head count by method? or is it only possible after fully parsing the message? I see that "ratelimit" module uses similar information, but I am not sure how to get the status of these queues that the module uses. Thanks

10 years, 4 months

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

sr-users June 2014