24 Aug
2009
24 Aug
'09
6:43 p.m.
Hi!
Just to make clear things - what do you mean with "incoming" - TLS
connections setup or SIP call flow.
For having incoming TLS connection you would need a client which allows
to configure a client certificate and acts as TLS server - I am not
aware of any.
Usually the TLS connection is setup from the client (means the proxy
acts as TLS server, sending a certificate which is verified by the TLS
client). Then, once the TLS connection is established, this connection
is used for outgoing and incoming SIP calls, without any forther
verification of TLS parameters (TLS certificate is only checked on TLS
connection setup).
SNOM: I had the same results as you
Eyebeam (probably like Bria): Works fine, uses Windows' certificate store
QjSimple: Should work, you have to provide a file with the CA
certificates (if not, let me know an I will fix it)
regards
klaus
catalina oancea schrieb:
Hello,
I am trying to find the phones that can use tls with certificate, I
mean that the phone doesn't accept incoming calls unless the server
certificate is signed by a public authority or manually added to a
list. For now my conclusions are:
-Snom 360 - works with TLS. But although snom wiki states that a
certificate is needed, incoming calls are accepted even if the
certificate is not uploaded.
-SJPhone - same as snom
-Bria - this is the only phone I could find that works only if the
certificate is loaded.
Has anybody used other phones with tls and can give me a piece of
advice? also, maybe I am not configuring Snom right and that's why it
doesn't need a certificate, any ideas?
Thanks
Catalina
_______________________________________________
Kamailio (OpenSER) - Users mailing list
Users(a)lists.kamailio.org
http://lists.kamailio.org/cgi-bin/mailman/listinfo/users
http://lists.openser-project.org/cgi-bin/mailman/listinfo/users