From khorsmann@gmail.com Wed Oct 30 08:08:53 2019
From: Karsten Horsmann <khorsmann@gmail.com>
To: sr-users@lists.kamailio.org
Subject: Re: [SR-Users] Kamailio as SBC for Microsoft Teams
Date: Wed, 30 Oct 2019 08:08:37 +0100
Message-ID:
 <CAFArqsb8ATu759KJq=6+o5who=HXgEBgaytXhMhCudqwVwdo7w@mail.gmail.com>
In-Reply-To: =?utf-8?q?=3CAM0PR0502MB361751282DE23E1770E31D70C5660=40AM0PR05?=
 =?utf-8?q?02MB3617=2Eeurprd05=2Eprod=2Eoutlook=2Ecom=3E?=
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============1187848422=="

--===============1187848422==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hi Henning,

nice to see that howto. Thanks.

Maybe interesting for the list - i try to verify the ms-teams calls with
tls and use the permission module functions as "helper":

        # account only INVITEs
        if (is_method("INVITE")) {
                setflag(FLT_ACC); # do accounting

                xlog("L_INFO", "-----------> tls_peer_subject
<$tls_peer_subject> tls_peer_subject_cn <$tls_peer_subject_cn>
tls_peer_verified <$tls_peer_verified> tls_peer_server_name
<$tls_peer_server_name> \n");
                xlog("L_INFO", "-----------> $Ri:$Rp src_user=3D$fU
src_domain=3D$fd src_ip=3D$si dst_ouser=3D$tU dst_user=3D$rU dst_domain=3D$rd=
\n");


                if($tls_peer_verified =3D=3D -1) {
                        xlog("L_INFO", "tls_peer_subject_cn
$tls_peer_subject_cn is NOT verfied!\n");
                        return;
                }
                $var(dns) =3D $tls_peer_subject_cn;
                $var(group) =3D allow_address_group($var(dns), $Rp);
                xlog("L_INFO", "-----------> allow_address_group var(group)
$var(group) var(dns) $var(dns) Rp $Rp\n");
                if ($var(group) =3D=3D -1) {
                        xlog("L_INFO", "Trunk is not activate for registrar
DNS_GROUP:[$var(dns)], Source: [$si], Destination: [$Ri] Port:[$Rp]\n");
                        return;
                }
        }


Oct 30 07:55:46 sbc1 /usr/sbin/kamailio[2689]: INFO: {1 1 INVITE
34b77c805b475a39a669b03544f87fae} <script>: -----------> tls_peer_subject
<<null>> tls_peer_subject_cn <sip.pstnhub.microsoft.com> tls_peer_verified
<1> tls_peer_server_name <SBC-DNS-NAME>
Oct 30 07:55:46 sbc1 /usr/sbin/kamailio[2689]: INFO: {1 1 INVITE
34b77c805b475a39a669b03544f87fae} <script>: ----------->
allow_address_group var(group) 1 var(dns) sip.pstnhub.microsoft.com Rp 5061

less /etc/kamailio/database/address
id(int,auto) grp(int) ip_addr(string) mask(int) port(int) tag(string,null)
1:1:sip.pstnhub.microsoft.com:0:0:msteams
2:1:sip2.pstnhub.microsoft.com:0:0:msteams
3:1:sip3.pstnhub.microsoft.com:0:0:msteams
4:1:sip-all.pstnhub.microsoft.com:0:0:msteams



Henning Westerholt <hw(a)skalatan.de> schrieb am Mo., 28. Okt. 2019, 17:22:

> Hello,
>
>
>
> I have created a =E2=80=9CHow-To=E2=80=9D blog post on using Kamailio as =
=E2=80=9Csession border
> controller=E2=80=9D for Microsoft Teams Direct Routing:
>
>
>
> https://skalatan.de/de/blog/kamailio-sbc-teams
>
>
>
> You can this way use all the existing possibilities that Kamailio provide
> to interact with MS Teams as well.
>
>
>
> Best regards,
>
>
>
> Henning
>
>
>
> --
>
> Henning Westerholt - https://skalatan.de/blog/
>
> Kamailio services - https://skalatan.de/services
>
>
> _______________________________________________
> Kamailio (SER) - Users Mailing List
> sr-users(a)lists.kamailio.org
> https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users
>



--===============1187848422==
Content-Type: text/html
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="attachment.html"
MIME-Version: 1.0
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--===============1187848422==--