Re: [Serusers] Configure Incoming in SER

28 May 2007

You didnt specify, what happens to the call. Does it get rejected? Timeout?

Usually, if I want to peer 2 SERs, I use permissions module, i.e.
allow_trusted() function must be used in order to allow incoming calls
from a certain IP. Take a look at Getting Started doc inside the NAT
handling section.

Anyway, SER-B doesnt use database, which means it does not care about
authentication. This is why call from SER-A can go thorugh. On the
other hand, SER-A uses database and so it will also use proper
authentication methods. As long as SER-B's IP is not present in the
'trusted' table of MySQL, SER-A will keep on rejecting your calls.

On 5/28/07, Arun Kumar &lt;arunvoip(a)gmail.com&gt; wrote:
...
  Hi

 I've configure two ser box in my local network:
 1. one box with mysql auth (SER A)
 2. without any auth (just make install) (SER B)

 in both boxes 2-2 users are registered and they are able to call each other.

 my SER A users are able to call SER B user (sip:2001@SER-B) but SER B user
 can't call SER A (sip:3001@SER-A) user. here is my config file for SER A
 box:

 ------------------
 debug=5
 fork=no
 log_stderror=yes
 listen=176.249.2.69   # INSERT YOUR IP ADDRESS HERE
 port=5060
 children=4

 dns=no
 rev_dns=no
 fifo="/tmp/ser_fifo"
 fifo_db_url="mysql://ser:heslo@localhost /ser"

 loadmodule "/usr/local/lib/ser/modules/mysql.so"
 loadmodule "/usr/local/lib/ser/modules/sl.so"
 loadmodule "/usr/local/lib/ser/modules/tm.so"
 loadmodule "/usr/local/lib/ser/modules/rr.so"
 loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
 loadmodule "/usr/local/lib/ser/modules/usrloc.so"
 loadmodule "/usr/local/lib/ser/modules/registrar.so"
 loadmodule "/usr/local/lib/ser/modules/auth.so"
 loadmodule "/usr/local/lib/ser/modules/auth_db.so"
 loadmodule "/usr/local/lib/ser/modules/uri.so"
 loadmodule "/usr/local/lib/ser/modules/uri_db.so"
 loadmodule "/usr/local/lib/ser/modules/domain.so"
 loadmodule "/usr/local/lib/ser/modules/nathelper.so"
 loadmodule "/usr/local/lib/ser/modules/avpops.so"
 loadmodule "/usr/local/lib/ser/modules/textops.so"
 loadmodule "/usr/local/lib/ser/modules/mediaproxy.so"
 loadmodule "/usr/local/lib/ser/modules/permissions.so"
 loadmodule "/usr/local/lib/ser/modules/acc.so"
 loadmodule "/usr/local/lib/ser/modules/xlog.so"

 modparam("auth_db|uri_db|usrloc", "db_url", "
 mysql://ser:heslo@localhost/ser")
 modparam("auth_db", "calculate_ha1", 1)
 modparam("auth_db", "password_column", "password")
 modparam("usrloc", "db_mode", 2)
 modparam("rr", "enable_full_lr", 1)
 route {

   #
 -----------------------------------------------------------------
   # Sanity Check Section
   #
 -----------------------------------------------------------------
   if (!mf_process_maxfwd_header("10")) {
     sl_send_reply("483", "Too Many Hops");
     break;
   };

   if (msg:len > max_len) {
     sl_send_reply("513", "Message Overflow");
     break;
   };

   #
 -----------------------------------------------------------------
   # Record Route Section
   #
 -----------------------------------------------------------------
   if (method!="REGISTER") {
     record_route();
   };

   #
 -----------------------------------------------------------------
   # Loose Route Section
   #
 -----------------------------------------------------------------
   if (loose_route()) {

         if ((method=="INVITE" || method=="REFER") &&
!has_totag()) {
                 sl_send_reply("403", "Forbidden Cant cross 1st
bridge");
                 break;
       };

     route(1);
     break;
   };

   #
 -----------------------------------------------------------------
   # Call Type Processing Section
   #
 -----------------------------------------------------------------
   if (uri!=myself) {
     route(1);
     break;
   };

   if (method=="ACK") {
     route(1);
     break;
   } if (method=="INVITE") {
     route(3);
     break;
   } else  if (method=="REGISTER") {
     route(2);
     break;
   };

   lookup("aliases");
   if (uri!=myself) {
     route(1);
     break;
   };

   if (!lookup("location")) {
     sl_send_reply("404", "User Not Found");
     break;
   };

   route(1);
 }

 route[1] {

   #
 -----------------------------------------------------------------
   # Default Message Handler
   #
 -----------------------------------------------------------------
   if (!t_relay()) {
     sl_reply_error();
   };
 }

 route[2] {

   #
 -----------------------------------------------------------------
   # REGISTER Message Handler
   #
 ----------------------------------------------------------------
   sl_send_reply("100", "Trying");

   if (!www_authorize("","subscriber")) {
     www_challenge("","1");
     break;
   };

   if (!check_to()) {
     sl_send_reply("401", "Unauthorized");
     break;
   };

   consume_credentials();

   if (!save("location")) {
     sl_reply_error();
   };
 }

 route[3] {
   #
 -----------------------------------------------------------------
   # INVITE Message Handler
   #
 -----------------------------------------------------------------

   if (!proxy_authorize("","subscriber")) {
     proxy_challenge("","1");
     break;
   } else if (!check_from()) {
     sl_send_reply("403", "Use From=ID");
     break;
   };

   consume_credentials();

   lookup("aliases");
   if (uri!=myself) {
     route(1);
     break;
   };

   if (!lookup("location")) {
     sl_send_reply("404", "User Not Found");
     break;
   };

   route(1);
 }

 -------------
 please guide me how to do this.

 thanks

 arun

 _______________________________________________
 Serusers mailing list
 Serusers(a)lists.iptel.org
 http://lists.iptel.org/mailman/listinfo/serusers

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [Serusers] Configure Incoming in SER