29 Oct
2015
29 Oct
'15
5:08 p.m.
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options:
disable_tls = 0
listen=tls:192.168.50.60:5061
tls_certificate="/etc/kamailio/tls/crt.pem"
tls_private_key="/etc/kamailio/tls/key.pem"
tls_ca_list="/etc/kamailio/tls/ca.pem"
tls_verify_client=on
tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not
work. Which option uses for check certificate revocation in kamailio 1.5.x ?
30 Oct
30 Oct
12:22 a.m.
Hello,
the version is too old to remember its tls implementation, which was
rather rigid. For clarification, do you mean that tls_crl is not
available or if set, it doesn't work?
Cheers,
Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options:
disable_tls = 0
listen=tls:192.168.50.60:5061
tls_certificate="/etc/kamailio/tls/crt.pem"
tls_private_key="/etc/kamailio/tls/key.pem"
tls_ca_list="/etc/kamailio/tls/ca.pem"
tls_verify_client=on
tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does
not work. Which option uses for check certificate revocation in
kamailio 1.5.x ?
_______________________________________________
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
sr-users(a)lists.sip-router.org
http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
--
Daniel-Constantin Mierla
http://twitter.com/#!/miconda - http://www.linkedin.com/in/miconda
Book: SIP Routing With Kamailio - http://www.asipto.com
Kamailio Advanced Training, Nov 30-Dec 2, Berlin - http://asipto.com/kat
10:06 a.m.
I mean tls_crl is not available. If i set it, kamailio says: bad config
file.
Hello,
the version is too old to remember its tls implementation, which was
rather rigid. For clarification, do you mean that tls_crl is not
available or if set, it doesn't work?
Cheers,
Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
> Hello!
>
> I use kamailio 1.5.4-tls (i386/linux).
>
> I configured the tls options:
> disable_tls = 0
> listen=tls:192.168.50.60:5061
> tls_certificate="/etc/kamailio/tls/crt.pem"
> tls_private_key="/etc/kamailio/tls/key.pem"
> tls_ca_list="/etc/kamailio/tls/ca.pem"
> tls_verify_client=on
> tls_require_client_certificate=on
>
> I need to check certificate revocation, but the option tls_crl does
> not work. Which option uses for check certificate revocation in
> kamailio 1.5.x ?
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
--
Evgeniy Ivanov
Prostor Telecom
Saint-Petersburg, Russia
+7 (812) 3364000 (ext. 248)
10:08 a.m.
I mean tls_crl is not available. If i set it, kamailio says: bad config
file.
Hello,
the version is too old to remember its tls implementation, which was
rather rigid. For clarification, do you mean that tls_crl is not
available or if set, it doesn't work?
Cheers,
Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
> Hello!
>
> I use kamailio 1.5.4-tls (i386/linux).
>
> I configured the tls options:
> disable_tls = 0
> listen=tls:192.168.50.60:5061
> tls_certificate="/etc/kamailio/tls/crt.pem"
> tls_private_key="/etc/kamailio/tls/key.pem"
> tls_ca_list="/etc/kamailio/tls/ca.pem"
> tls_verify_client=on
> tls_require_client_certificate=on
>
> I need to check certificate revocation, but the option tls_crl does
> not work. Which option uses for check certificate revocation in
> kamailio 1.5.x ?
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
1:25 p.m.
Then likely the feature was not implemented in that version. Starting
with v3.0, tls was completely refactored, becoming a module. You would
have to upgrade to newer version in order to get this feature.
Cheers,
Daniel
On 30/10/15 08:08, Evgeniy Ivanov wrote:
I mean tls_crl is not available. If i set it, kamailio
says: bad
config file.
--
Daniel-Constantin Mierla
http://twitter.com/#!/miconda - http://www.linkedin.com/in/miconda
Book: SIP Routing With Kamailio - http://www.asipto.com
Kamailio Advanced Training, Nov 30-Dec 2, Berlin - http://asipto.com/kat
Hello,
the version is too old to remember its tls implementation, which was
rather rigid. For clarification, do you mean that tls_crl is not
available or if set, it doesn't work?
Cheers,
Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
> Hello!
>
> I use kamailio 1.5.4-tls (i386/linux).
>
> I configured the tls options:
> disable_tls = 0
> listen=tls:192.168.50.60:5061
> tls_certificate="/etc/kamailio/tls/crt.pem"
> tls_private_key="/etc/kamailio/tls/key.pem"
> tls_ca_list="/etc/kamailio/tls/ca.pem"
> tls_verify_client=on
> tls_require_client_certificate=on
>
> I need to check certificate revocation, but the option tls_crl does
> not work. Which option uses for check certificate revocation in
> kamailio 1.5.x ?
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
list
_______________________________________________
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
sr-users(a)lists.sip-router.org
http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
1:37 p.m.
Unfortunately, I can't to upgrade to new version. Can i compile and use
module from 3.0 in 1.5 version ?
Then likely the feature was not implemented in that
version. Starting
with v3.0, tls was completely refactored, becoming a module. You would
have to upgrade to newer version in order to get this feature.
Cheers,
Daniel
On 30/10/15 08:08, Evgeniy Ivanov wrote:
> I mean tls_crl is not available. If i set it, kamailio says: bad
> config file.
>
>> Hello,
>>
>> the version is too old to remember its tls implementation, which was
>> rather rigid. For clarification, do you mean that tls_crl is not
>> available or if set, it doesn't work?
>>
>> Cheers,
>> Daniel
>>
>> On 29/10/15 15:08, Evgeniy Ivanov wrote:
>>> Hello!
>>>
>>> I use kamailio 1.5.4-tls (i386/linux).
>>>
>>> I configured the tls options:
>>> disable_tls = 0
>>> listen=tls:192.168.50.60:5061
>>> tls_certificate="/etc/kamailio/tls/crt.pem"
>>> tls_private_key="/etc/kamailio/tls/key.pem"
>>> tls_ca_list="/etc/kamailio/tls/ca.pem"
>>> tls_verify_client=on
>>> tls_require_client_certificate=on
>>>
>>> I need to check certificate revocation, but the option tls_crl does
>>> not work. Which option uses for check certificate revocation in
>>> kamailio 1.5.x ?
>>>
>>> _______________________________________________
>>> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
> list
>>> sr-users at lists.sip-router.org
>>> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
2 Nov
2 Nov
10:59 a.m.
Hello,
no, 3.0+ is incompatible with 1.x.
If upgrade is not an option, either you have to write C code or
implement it via some external script (e.g., using exec module).
Cheers,
Daniel
On 30/10/15 11:37, Evgeniy Ivanov wrote:
Unfortunately, I can't to upgrade to new version.
Can i compile and
use module from 3.0 in 1.5 version ?
--
Daniel-Constantin Mierla
http://twitter.com/#!/miconda - http://www.linkedin.com/in/miconda
Book: SIP Routing With Kamailio - http://www.asipto.com
Kamailio Advanced Training, Nov 30-Dec 2, Berlin - http://asipto.com/kat
Then likely the feature was not implemented in
that version. Starting
with v3.0, tls was completely refactored, becoming a module. You would
have to upgrade to newer version in order to get this feature.
Cheers,
Daniel
On 30/10/15 08:08, Evgeniy Ivanov wrote:
> I mean tls_crl is not available. If i set it, kamailio says: bad
> config file.
>
>> Hello,
>>
>> the version is too old to remember its tls implementation, which was
>> rather rigid. For clarification, do you mean that tls_crl is not
>> available or if set, it doesn't work?
>>
>> Cheers,
>> Daniel
>>
>> On 29/10/15 15:08, Evgeniy Ivanov wrote:
>>> Hello!
>>>
>>> I use kamailio 1.5.4-tls (i386/linux).
>>>
>>> I configured the tls options:
>>> disable_tls = 0
>>> listen=tls:192.168.50.60:5061
>>> tls_certificate="/etc/kamailio/tls/crt.pem"
>>> tls_private_key="/etc/kamailio/tls/key.pem"
>>> tls_ca_list="/etc/kamailio/tls/ca.pem"
>>> tls_verify_client=on
>>> tls_require_client_certificate=on
>>>
>>> I need to check certificate revocation, but the option tls_crl does
>>> not work. Which option uses for check certificate revocation in
>>> kamailio 1.5.x ?
>>>
>>> _______________________________________________
>>> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
> list
>>> sr-users at lists.sip-router.org
>>> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
list
_______________________________________________
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
sr-users(a)lists.sip-router.org
http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
3311
days inactive
3315
days old
6 comments
3 participants
participants (3)
-
Daniel-Constantin Mierla -
Evgeniy Ivanov -
Евгений Иванов