Hello Daniel,
The headers in the callee logs contains encrypted data which is exactly what I expect but when I look at the caller logs I can see that the headers are partially encrypted and they contain the ip address of the registrar that I want to hide in clear.
In the following message from the caller log, the Record-Route contains the ip 10.3.3.26 which is the registrar. I would expect at least this ip address to be encrypted.
SIP/2.0 200 OK Via: SIP/2.0/TLS 10.3.3.18:44775;received=10.3.3.28;rport=44775;branch=z9hG4bK-3855-1-5 From: testuser.2 <sip:[hidden email]>;tag=3855SIPpTag071 To: <sip:[hidden email]>;tag=3843SIPpTag08b2 Call-ID: 1-3855@10.3.3.18 CSeq: 50 INVITE Contact: sip:255.255.255.255;uph=uth-aFNMK9nOiZhDisdr-9dOx9nOislOawQeRIHGxcCwsmOxRdjKv50nsFCwidHhKdifxIifaSOkU7JhKclGZ2NmscmfYsEZakBz5p5Bs5H4Z9iuidQlE7JqUNHPsWBj-9-1xd1G-uQfxInlKcBvxsJmscmPsNQlsZGz Record-Route: sip:255.255.255.255;uph=uth-aFNMK9kMx9-r-DhDK7GO-7vDKPHDvcf2aweDR7O3Tp-6a9neTFh6TpneTFh*, sip:10.3.3.28;r2=on;lr=on, sip:10.3.3.26:4060;lr;rps=0, sip:10.3.3.28;r2=on;lr=on, sip:10.3.3.28:5062;transport=tls;r2=on;lr=on Content-Type: application/sdp Content-Length: 212
v=0 o=testuser.1 53655765 2353687637 IN IP4 10.3.3.27 s=- c=IN IP4 10.3.3.27 t=0 0 m=audio 50920 RTP/AVP 8 101 a=rtpmap:8 PCMA/8000 a=rtpmap:101 telephone-event/8000 a=fmtp:101 0-11,16 a=nortpproxy:yes
The behavior that I expected from the topoh module (enabled on the proxy) was to encrypt headers for all SIP messages for both caller and callee so that the ip address of the registrar never appear in clear in any SIP message going from the SIP proxy to a SIP client.
Thanks, Christian
-- Sent from: http://sip-router.1086192.n5.nabble.com/Users-f3.html