Hi guys,
I've baning my head for the last 6 7 days with something that have to be universally simple but obviously for me it is not, so please do help.
I have the following setup.
xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
Kamailio listens on 10.2.47.201 I have setup a domain xxx.itradebg.com and I've made the appropriate records in the DNS. I have inserted the domain xxx.itradebg.com in the domain table in the database and kamctl domain show shows the correct thing.
Now when I try to register 999@xxx.itradebg.com I get Request timed out
I have this in my config: if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } } if (from_uri!=myself && uri!=myself) {
if(lookup_domain("$fd", "@from.uri.host")){ xlog("LOCAL DOMAIN -> REGISTER"); exit; } else{ xlog("L_WARN","FROM NOT LOCAL"); sl_send_reply("403","Sorry mate not relaying"); exit; } }
By the time of writing this I realised that this should be all rewritten to this only, as the second check is useless:
if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } }
However I get 401 Unauthorized. The previous setup was giving me 408 - Request Timed out...
I am pretty sure I have the passwords correct.
What I cannot understand is why authentication fails ?!
Also, how do I set kamailio to print debug output ? debug=9 log_stderror=no
This is what I have in the .conf file. /var/log/messages seems to only have what I have printed with xlog... (think)
I am really out of ideas... perhaps I need some sleep.
Anyway any input is helpful guys.
Thanks, Rumen http://itradebg.com
Hi Rumen,
Can you tell how are you creating users in your "sip" table? Are you sure that the passwords are calculated using the real/domain part of the SIP User definition?
Also ensure that your auth_db module has multidomain(use-domain) modparam enabled and if you're using your own table coloumn to store user's domain part then edit the modparam to use that particular coloumn (domain_coloumn)
Thanks, Sammy
On Tue, Jan 29, 2013 at 2:52 AM, Rumen Mihailov zealas1662@gmail.comwrote:
Hi guys,
I've baning my head for the last 6 7 days with something that have to be universally simple but obviously for me it is not, so please do help.
I have the following setup.
xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
Kamailio listens on 10.2.47.201 I have setup a domain xxx.itradebg.com and I've made the appropriate records in the DNS. I have inserted the domain xxx.itradebg.com in the domain table in the database and kamctl domain show shows the correct thing.
Now when I try to register 999@xxx.itradebg.com I get Request timed out
I have this in my config: if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } } if (from_uri!=myself && uri!=myself) {
if(lookup_domain("$fd", "@from.uri.host")){ xlog("LOCAL DOMAIN -> REGISTER"); exit; } else{ xlog("L_WARN","FROM NOT LOCAL"); sl_send_reply("403","Sorry mate not relaying"); exit; } }By the time of writing this I realised that this should be all rewritten to this only, as the second check is useless:
if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } }However I get 401 Unauthorized. The previous setup was giving me 408 - Request Timed out...
I am pretty sure I have the passwords correct.
What I cannot understand is why authentication fails ?!
Also, how do I set kamailio to print debug output ? debug=9 log_stderror=no
This is what I have in the .conf file. /var/log/messages seems to only have what I have printed with xlog... (think)
I am really out of ideas... perhaps I need some sleep.
Anyway any input is helpful guys.
Thanks, Rumen http://itradebg.com
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
Hello Sammy,
thank you for your input.
sip table is in another database and I use asterisk database as per the example here: http://kb.asipto.com/asterisk:realtime:kamailio-3.3.x-asterisk-10.7.0-astdb
Are you sure that the passwords are calculated using the real/domain part of the SIP User definition?
This however I have no clue how to check.
Indeed the option use_domain was not enabled. I will check later today.
Sammy, what about the debug logging ? do you have any clue about that ?
Regards, Rumen
On 29 January 2013 08:20, SamyGo govoiper@gmail.com wrote:
Hi Rumen,
Can you tell how are you creating users in your "sip" table? Are you sure that the passwords are calculated using the real/domain part of the SIP User definition?
Also ensure that your auth_db module has multidomain(use-domain) modparam enabled and if you're using your own table coloumn to store user's domain part then edit the modparam to use that particular coloumn (domain_coloumn)
Thanks, Sammy
On Tue, Jan 29, 2013 at 2:52 AM, Rumen Mihailov zealas1662@gmail.com wrote:
Hi guys,
I've baning my head for the last 6 7 days with something that have to be universally simple but obviously for me it is not, so please do help.
I have the following setup.
xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
Kamailio listens on 10.2.47.201 I have setup a domain xxx.itradebg.com and I've made the appropriate records in the DNS. I have inserted the domain xxx.itradebg.com in the domain table in the database and kamctl domain show shows the correct thing.
Now when I try to register 999@xxx.itradebg.com I get Request timed out
I have this in my config: if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } } if (from_uri!=myself && uri!=myself) {
if(lookup_domain("$fd", "@from.uri.host")){ xlog("LOCAL DOMAIN -> REGISTER"); exit; } else{ xlog("L_WARN","FROM NOT LOCAL"); sl_send_reply("403","Sorry mate not relaying"); exit; } }By the time of writing this I realised that this should be all rewritten to this only, as the second check is useless:
if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } }However I get 401 Unauthorized. The previous setup was giving me 408 - Request Timed out...
I am pretty sure I have the passwords correct.
What I cannot understand is why authentication fails ?!
Also, how do I set kamailio to print debug output ? debug=9 log_stderror=no
This is what I have in the .conf file. /var/log/messages seems to only have what I have printed with xlog... (think)
I am really out of ideas... perhaps I need some sleep.
Anyway any input is helpful guys.
Thanks, Rumen http://itradebg.com
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
Hi again,
If you're usng another table then user with plain password can get registered given then domain coloumn is mentioned in the auth_db modparam. Also turn on the use_domain param for usrloc module as well so it saves the users with their domain part in AOR.
I don't know (or found any) the logs you're talking about.
Thanks, Sammy
On Tue, Jan 29, 2013 at 1:06 PM, Rumen Mihailov zealas1662@gmail.comwrote:
Hello Sammy,
thank you for your input.
sip table is in another database and I use asterisk database as per the example here: http://kb.asipto.com/asterisk:realtime:kamailio-3.3.x-asterisk-10.7.0-astdb
Are you sure that the passwords are calculated using the real/domain part of the SIP
User
definition?
This however I have no clue how to check.
Indeed the option use_domain was not enabled. I will check later today.
Sammy, what about the debug logging ? do you have any clue about that ?
Regards, Rumen
On 29 January 2013 08:20, SamyGo govoiper@gmail.com wrote:
Hi Rumen,
Can you tell how are you creating users in your "sip" table? Are you sure that the passwords are calculated using the real/domain part of the SIP
User
definition?
Also ensure that your auth_db module has multidomain(use-domain) modparam enabled and if you're using your own table coloumn to store user's domain part then edit the modparam to use that particular coloumn
(domain_coloumn)
Thanks, Sammy
On Tue, Jan 29, 2013 at 2:52 AM, Rumen Mihailov zealas1662@gmail.com wrote:
Hi guys,
I've baning my head for the last 6 7 days with something that have to be universally simple but obviously for me it is not, so please do help.
I have the following setup.
xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
Kamailio listens on 10.2.47.201 I have setup a domain xxx.itradebg.com and I've made the appropriate records in the DNS. I have inserted the domain xxx.itradebg.com in the domain table in the database and kamctl domain show shows the correct thing.
Now when I try to register 999@xxx.itradebg.com I get Request timed out
I have this in my config: if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } } if (from_uri!=myself && uri!=myself) {
if(lookup_domain("$fd", "@from.uri.host")){ xlog("LOCAL DOMAIN -> REGISTER"); exit; } else{ xlog("L_WARN","FROM NOT LOCAL"); sl_send_reply("403","Sorry mate not relaying"); exit; } }By the time of writing this I realised that this should be all rewritten to this only, as the second check is useless:
if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } }However I get 401 Unauthorized. The previous setup was giving me 408 - Request Timed out...
I am pretty sure I have the passwords correct.
What I cannot understand is why authentication fails ?!
Also, how do I set kamailio to print debug output ? debug=9 log_stderror=no
This is what I have in the .conf file. /var/log/messages seems to only have what I have printed with xlog... (think)
I am really out of ideas... perhaps I need some sleep.
Anyway any input is helpful guys.
Thanks, Rumen http://itradebg.com
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
Hello Sammy,
these are the settings for my auth_db modparam("auth_db", "user_column", "username") modparam("auth_db", "password_column", "sippasswd") modparam("auth_db", "db_url", DBASTURL) modparam("auth_db", "version_table", 0) modparam("auth_db", "domain_column", "fromdomain") modparam("auth_db", "use_domain", 1)
I am not sure if calculate_ha1 should be present.
passwords are stored in plain text in the sippasswd field.
Regarding the log I want to know how can I enable debug logging of Kamailio... so that I can see what queries are executed and what exactly is the issue when something fails.
thank you.
Regards, Rumen
On 29 January 2013 11:51, SamyGo govoiper@gmail.com wrote:
Hi again,
If you're usng another table then user with plain password can get registered given then domain coloumn is mentioned in the auth_db modparam. Also turn on the use_domain param for usrloc module as well so it saves the users with their domain part in AOR.
I don't know (or found any) the logs you're talking about.
Thanks, Sammy
On Tue, Jan 29, 2013 at 1:06 PM, Rumen Mihailov zealas1662@gmail.com wrote:
Hello Sammy,
thank you for your input.
sip table is in another database and I use asterisk database as per the example here:
http://kb.asipto.com/asterisk:realtime:kamailio-3.3.x-asterisk-10.7.0-astdb
Are you sure that the passwords are calculated using the real/domain part of the SIP User definition?
This however I have no clue how to check.
Indeed the option use_domain was not enabled. I will check later today.
Sammy, what about the debug logging ? do you have any clue about that ?
Regards, Rumen
On 29 January 2013 08:20, SamyGo govoiper@gmail.com wrote:
Hi Rumen,
Can you tell how are you creating users in your "sip" table? Are you sure that the passwords are calculated using the real/domain part of the SIP User definition?
Also ensure that your auth_db module has multidomain(use-domain) modparam enabled and if you're using your own table coloumn to store user's domain part then edit the modparam to use that particular coloumn (domain_coloumn)
Thanks, Sammy
On Tue, Jan 29, 2013 at 2:52 AM, Rumen Mihailov zealas1662@gmail.com wrote:
Hi guys,
I've baning my head for the last 6 7 days with something that have to be universally simple but obviously for me it is not, so please do help.
I have the following setup.
xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
Kamailio listens on 10.2.47.201 I have setup a domain xxx.itradebg.com and I've made the appropriate records in the DNS. I have inserted the domain xxx.itradebg.com in the domain table in the database and kamctl domain show shows the correct thing.
Now when I try to register 999@xxx.itradebg.com I get Request timed out
I have this in my config: if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } } if (from_uri!=myself && uri!=myself) {
if(lookup_domain("$fd", "@from.uri.host")){ xlog("LOCAL DOMAIN -> REGISTER"); exit; } else{ xlog("L_WARN","FROM NOT LOCAL"); sl_send_reply("403","Sorry mate not relaying"); exit; } }By the time of writing this I realised that this should be all rewritten to this only, as the second check is useless:
if (is_method("REGISTER") || from_uri==myself) { if (!auth_check("$fd", "sip", "1")) { auth_challenge("$fd", "0"); exit; } }However I get 401 Unauthorized. The previous setup was giving me 408 - Request Timed out...
I am pretty sure I have the passwords correct.
What I cannot understand is why authentication fails ?!
Also, how do I set kamailio to print debug output ? debug=9 log_stderror=no
This is what I have in the .conf file. /var/log/messages seems to only have what I have printed with xlog... (think)
I am really out of ideas... perhaps I need some sleep.
Anyway any input is helpful guys.
Thanks, Rumen http://itradebg.com
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
-
Rumen Mihailov -
SamyGo