Re: [Users] SER behind PIX

21 Feb 2007

yup.  Make sure that your subscriber's domain matches the one that you
created in openser db (see subscriber table).

Regards,
Ovidiu Sas

On 2/20/07, Diego Valencia &lt;dvalencia(a)ip-tel.com.ar&gt; wrote:
...
  Hi Ovidiu, I´m currently configured on this way on my
openser:

                         if (!www_authorize("ser.ip-tel.com.ar",
 "subscriber")) {
                                 www_challenge("ser.ip-tel.com.ar",
"0");
                                 break;
                         };

 Is it right?

 Thanks

 Diego

 ----- Original Message -----
 From: "Ovidiu Sas" &lt;sip.nslu(a)gmail.com&gt;
 To: "Diego Valencia" &lt;dvalencia(a)ip-tel.com.ar&gt;
 Cc: &lt;users(a)openser.org&gt;
 Sent: Tuesday, February 20, 2007 4:39 PM
 Subject: Re: [Users] SER behind PIX

 Hi Diego,

 When you challenge the SIP UA from openSER, provide the realm and
 configure the SIP UA to use that particular realm for authorization.

 see: http://openser.org/docs/modules/1.2.x/auth_db.html#AEN170
 (do not use an empty string for realm)

 Regards,
 Ovidiu Sas

 On 2/20/07, Diego Valencia &lt;dvalencia(a)ip-tel.com.ar&gt; wrote:
  Hi everybody.  In the topology:

 INTERNET
         |
     PIX  (NAT static translate 200.x.x.2 to 10.1.1.2)
         |
     SER (10.1.1.2)

 I can´t register UA from internet.(unauthorized)

 The PIX is configured with the "fixup SIP" and "fixup udp SIP"
commands.
 I guess there is a problem when UA generates HA1 with the external IP,
 then
 de PIX translates this to internal IP, and the SER can´t authenticate it
 by
 the erroneous hash.

 Anybody know some solution for it?

 Thanks!

 Diego

 _______________________________________________
 Users mailing list
 Users(a)openser.org
 http://openser.org/cgi-bin/mailman/listinfo/users

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [Users] SER behind PIX