Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both sipsoftphone in local network that no problem !
Which port range i need release for rtpproxy in the firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters ------------------------ #debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo" # ------------------ module loading ----------------------------------
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule "/usr/local/lib/ser/modules/registrar.so" loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule "/usr/local/lib/ser/modules/nathelper.so" # Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule "/usr/local/lib/ser/modules/auth_db.so" #loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column", "password") #modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) # Ping interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes (which true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column", "password") # -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1) # ------------------------- request routing logic ------------------- # main routing logic #define NAT_UAC_TEST_C_1918 0x01 /* * test for occurences of RFC1918 addresses in Contact * header field */ #define NAT_UAC_TEST_RCVD 0x02 /* * test if source address of signaling is different from * address advertised in Via */ #define NAT_UAC_TEST_V_1918 0x04 /* * test for occurences of RFC1918 addresses in SDP body */ #define NAT_UAC_TEST_S_1918 0x08 /* * test for occurences of RFC1918 addresses top Via */ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break; }; }; append_hf("P-hint: usrloc applied\r\n"); route(1); } route[1] { # !! Nathelper if (isflagset(6)) { force_rtp_proxy(); append_hf("NAT: ...\r\n"); }; # NAT processing of replies; apply to all transactions (for example, # re-INVITEs from public to private UA are hard to identify as # NATed at the moment of request processing); look at replies t_on_reply("1"); # send it out now; use stateful forwarding as it works reliably # even for UDP2TCP if (!t_relay()) { sl_reply_error(); }; } # !! Nathelper onreply_route[1] { # NATed transaction ? append_hf("NAT: tes\r\n"); if (isflagset(6) && status == "(200)") { fix_nated_contact(); fix_nated_sdp("3"); force_rtp_proxy(); append_hf("NAT: test\r\n"); # otherwise, is it a transaction behind a NAT and we did not # know at time of request processing ? (RFC1918 contacts) } else if (nat_uac_test("1")) { fix_nated_contact(); fix_nated_sdp("3"); force_rtp_proxy(); append_hf("NAT: test1\r\n"); }; }
Please help !
Tks a Lot ! Freeman
伈鴃立即知
Hello,
If ser and rtpproxy run on the same box your ser.cfg is wrong.
you need to define rtp range ports when you compile rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman hykh080@yahoo.com.hk a écrit :
Hi,
I installed "Ser-0.8.14" + "nathelper" +"rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both sipsoftphone in local network that no problem !
Which port range i need release for rtpproxy in the firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule "/usr/local/lib/ser/modules/registrar.so" loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule "/usr/local/lib/ser/modules/nathelper.so" # Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule "/usr/local/lib/ser/modules/auth_db.so" #loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column", "password") #modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) # Ping interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes (which true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column", "password") # -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break; }; }; append_hf("P-hint: usrloc applied\r\n"); route(1); } route[1] { # !! Nathelper if (isflagset(6)) { force_rtp_proxy(); append_hf("NAT: ...\r\n"); }; # NAT processing of replies; apply to all transactions (for example, # re-INVITEs from public to private UA are hard to identify as # NATed at the moment of request processing); look at replies t_on_reply("1"); # send it out now; use stateful forwarding as it works reliably # even for UDP2TCP if (!t_relay()) { sl_reply_error(); }; } # !! Nathelper onreply_route[1] { # NATed transaction ? append_hf("NAT: tes\r\n");
=== message truncated ===> _______________________________________________
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
___________________________________________________________________________ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr 說:Hello,
If ser and rtpproxy run on the same box your ser.cfg is wrong.
you need to define rtp range ports when you compile rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a 嶰rit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both sipsoftphone in local network that no problem !
Which port range i need release for rtpproxy in the firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule "/usr/local/lib/ser/modules/registrar.so" loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule "/usr/local/lib/ser/modules/nathelper.so" # Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule "/usr/local/lib/ser/modules/auth_db.so" #loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column", "password") #modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) # Ping interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes (which true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column", "password") # -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break; }; }; append_hf("P-hint: usrloc applied\r\n"); route(1); } route[1] { # !! Nathelper if (isflagset(6)) { force_rtp_proxy(); append_hf("NAT: ...\r\n"); }; # NAT processing of replies; apply to all transactions (for example, # re-INVITEs from public to private UA are hard to identify as # NATed at the moment of request processing); look at replies t_on_reply("1"); # send it out now; use stateful forwarding as it works reliably # even for UDP2TCP if (!t_relay()) { sl_reply_error(); }; } # !! Nathelper onreply_route[1] { # NATed transaction ? append_hf("NAT: tes\r\n");
=== message truncated ===> _______________________________________________
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
___________________________________________________________________________ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger T幨嶰hargez cette version sur http://fr.messenger.yahoo.com
相片電郵測試版一個郵件就可以傳送過百張相片!
look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on the same box. So look at your ser.cfg script if you want call others domains or your own domain
Harry
--- Freeman hykh080@yahoo.com.hk a écrit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr »¡¡GHello,
If ser and rtpproxy run on the same box your ser.cfg is wrong.
you need to define rtp range ports when you compile rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a écrit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break;
=== message truncated ===> _______________________________________________
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
___________________________________________________________________________ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
but i using "Portaone rtpproxy", only that files :
main.c Makefile Makefile.gnu myqueue.h README
is this rtpproxy is not work in ser ???
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr 說: look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on the same box. So look at your ser.cfg script if you want call others domains or your own domain
Harry
--- Freeman a 嶰rit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac 說:Hello,
If ser and rtpproxy run on the same box your ser.cfg is wrong.
you need to define rtp range ports when you compile rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a 嶰rit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break;
=== message truncated ===> _______________________________________________
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
___________________________________________________________________________ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger T幨嶰hargez cette version sur http://fr.messenger.yahoo.com
_______________________________________ 想即時收到新 email 通知? 下載 Yahoo! Messenger http://messenger.yahoo.com.hk
That's an old old version! You need to get rtpproxy from the repository. Or use the Getting Started source package from ONsip.org g-)
---- Original Message ---- From: Freeman To: serusers@lists.iptel.org Sent: Wednesday, June 22, 2005 12:57 PM Subject: 標題: RE: [Serusers] RTPProxy Problem !
but i using "Portaone rtpproxy", only that files :
main.c Makefile Makefile.gnu myqueue.h README
is this rtpproxy is not work in ser ???
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr 說: look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on the same box. So look at your ser.cfg script if you want call others domains or your own domain
Harry
--- Freeman a 嶰rit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac 說:Hello,
If ser and rtpproxy run on the same box your ser.cfg is wrong.
you need to define rtp range ports when you compile rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a 嶰rit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_v ia=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/
& gt; > #define NAT_UAC_TEST_RCVD 0x02
/*
- test if source address of signaling is different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n");
&g t; > fix_nated_contact(); # Rewrite contact with source
IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break;
=== message truncated ===> _______________________________________________
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger T幨嶰hargez cette version sur http://fr.messenger.yahoo.com
想即時收到新 email 通知? 下載 Yahoo! Messenger http://messenger.yahoo.com.hk
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
I have registered the following issue with a suggestion for README text: http://bugs.sip-router.org/browse/SER-45
I encourage everybody to register documentation needs!! g-)
harry gaillac wrote:
look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on the same box. So look at your ser.cfg script if you want call others domains or your own domain
Harry
--- Freeman hykh080@yahoo.com.hk a écrit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr »¡¡GHello,
If ser and rtpproxy run on the same box your ser.cfg is wrong.
you need to define rtp range ports when you compile rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a écrit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy" in startup script, when i tried both sipsoftphone in the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/dbtext.so" #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule "/usr/local/lib/ser/modules/mysql.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2", "ha1_2") modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to SDP }; log("LOG: Someone trying to register from private IP, rewriting\n"); force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; };
if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break;
=== message truncated ===> _______________________________________________
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
hello,
rtpproxy is not documented unless you look at sources
it's a good idea but onsip.org need some fixings too many people waste time to ask for the same problems on mailing list.
documentation is not updated or missing. you can reply me: "do you want to write how-to ?"
onsip.org help me however i spent time (not waste time) to understand why i could not call others domains or get rtp streams with proxy rtp.
Regards
Harry
--- "Greger V. Teigre" greger@teigre.com a écrit :
I have registered the following issue with a suggestion for README text: http://bugs.sip-router.org/browse/SER-45
I encourage everybody to register documentation needs!! g-)
harry gaillac wrote:
look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on
the
same box. So look at your ser.cfg script if you want call
others
domains or your own domain
Harry
--- Freeman hykh080@yahoo.com.hk a écrit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr »¡¡GHello,
If ser and rtpproxy run on the same box your
ser.cfg
is wrong.
you need to define rtp range ports when you
compile
rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a écrit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy"
in
startup script, when i tried both sipsoftphone
in
the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule
"/usr/local/lib/ser/modules/maxfwd.so"
loadmodule
"/usr/local/lib/ser/modules/usrloc.so"
loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule
"/usr/local/lib/ser/modules/textops.so"
loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest
authentication
# mysql.so must be loaded ! #loadmodule
"/usr/local/lib/ser/modules/dbtext.so"
#loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule
"/usr/local/lib/ser/modules/mysql.so"
# ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2",
"ha1_2")
modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) #
Ping
only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1) # ------------------------- request routing
logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is
different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in
SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top
Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with
source
IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to
SDP
}; log("LOG: Someone trying to register from
private
=== message truncated ===
___________________________________________________________________________ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
Harry, Great that you like the document! As with all other open source efforts, we do this in our spare time and with no financial rewards... You are very welcome to submit ser.cfg snippets, your own documentation, or even a full text describing the things you miss in the ONsip.org documentation. That's the way to do the "fixings." The wish-list of wanted stuff is quite long already, so just pointing out the gaping holes is not enough, I'm afraid ;-) The contact info for the document: gettingstarted@onsip.org g-)
harry gaillac wrote:
hello,
rtpproxy is not documented unless you look at sources
it's a good idea but onsip.org need some fixings too many people waste time to ask for the same problems on mailing list.
documentation is not updated or missing. you can reply me: "do you want to write how-to ?"
onsip.org help me however i spent time (not waste time) to understand why i could not call others domains or get rtp streams with proxy rtp.
Regards
Harry
--- "Greger V. Teigre" greger@teigre.com a écrit :
I have registered the following issue with a suggestion for README text: http://bugs.sip-router.org/browse/SER-45
I encourage everybody to register documentation needs!! g-)
harry gaillac wrote:
look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on
the
same box. So look at your ser.cfg script if you want call
others
domains or your own domain
Harry
--- Freeman hykh080@yahoo.com.hk a écrit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac gaillacharry@yahoo.fr »¡¡GHello,
If ser and rtpproxy run on the same box your
ser.cfg
is wrong.
you need to define rtp range ports when you
compile
rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a écrit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy"
in
startup script, when i tried both sipsoftphone
in
the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule
"/usr/local/lib/ser/modules/maxfwd.so"
loadmodule
"/usr/local/lib/ser/modules/usrloc.so"
loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule
"/usr/local/lib/ser/modules/textops.so"
loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest
authentication
# mysql.so must be loaded ! #loadmodule
"/usr/local/lib/ser/modules/dbtext.so"
#loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule
"/usr/local/lib/ser/modules/mysql.so"
# ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2",
"ha1_2")
modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) #
Ping
only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1) # ------------------------- request routing
logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is
different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in
SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top
Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with
source
IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to
SDP
}; log("LOG: Someone trying to register from
private
=== message truncated ===
Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
Harry,
I tried reinstall ser-0.8.14 and rtpproxy in same box, i create two start script for ser and rtpproxy :
for ser /usr/local/bin/ser start
for rtpproxy cd / ./usr/local/bin/rtpproxy
and the ser.cfg, i following the ser-0.9.0 nathelper.cfg, but i tried connect both softphone outside the internet and behind NAT, but "No Voice" and "auto hang-up" !
Please help to fix the problem !
for ser.cfg
# # $Id: nathelper.cfg,v 1.1 2003/11/10 14:15:36 janakj Exp $ # # simple quick-start config script including nathelper support # This default script includes nathelper support. To make it work # you will also have to install Maxim's RTP proxy. The proxy is enforced # if one of the parties is behind a NAT. # # If you have an endpoing in the public internet which is known to # support symmetric RTP (Cisco PSTN gateway or voicemail, for example), # then you don't have to force RTP proxy. If you don't want to enforce # RTP proxy for some destinations than simply use t_relay() instead of # route(1) # # Sections marked with !! Nathelper contain modifications for nathelper # # NOTE !! This config is EXPERIMENTAL ! # # ----------- global configuration parameters ------------------------ debug=3 # debug level (cmd line: -dddddddddd) fork=yes log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no log_stderror=yes */ check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) port=5060 children=4 fifo="/tmp/ser_fifo" # ------------------ module loading ---------------------------------- # Uncomment this if you want to use SQL database #loadmodule "/usr/local/lib/ser/modules/mysql.so" loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule "/usr/local/lib/ser/modules/registrar.so" loadmodule "/usr/local/lib/ser/modules/textops.so" # Uncomment this if you want digest authentication # mysql.so must be loaded ! #loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule "/usr/local/lib/ser/modules/auth_db.so" # !! Nathelper loadmodule "/usr/local/lib/ser/modules/nathelper.so" # ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) # Uncomment this if you want to use SQL database # for persistent storage and comment the previous line #modparam("usrloc", "db_mode", 2) # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes (which true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column", "password") # -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1) # !! Nathelper modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) # Ping interval 30 s modparam("nathelper", "ping_nated_only", 1) # Ping only clients behind NAT # ------------------------- request routing logic ------------------- # main routing logic route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; # !! Nathelper # Special handling for NATed clients; first, NAT test is # executed: it looks for via!=received and RFC1918 addresses # in Contact (may fail if line-folding is used); also, # the received test should, if completed, should check all # vias for rpesence of received if (nat_uac_test("3")) { # Allow RR-ed requests, as these may indicate that # a NAT-enabled proxy takes care of it; unless it is # a REGISTER if (method == "REGISTER" || ! search("^Record-Route:")) { log("LOG: Someone trying to register from private IP, rewriting\n"); # This will work only for user agents that support symmetric # communication. We tested quite many of them and majority is # smart enough to be symmetric. In some phones it takes a configuration # option. With Cisco 7960, it is called NAT_Enable=Yes, with kphone it is # called "symmetric media" and "symmetric signalling". fix_nated_contact(); # Rewrite contact with source IP of signalling if (method == "INVITE") { fix_nated_sdp("1"); # Add direction=active to SDP }; force_rport(); # Add rport parameter to topmost Via setflag(6); # Mark as NATed }; }; # we record-route all messages -- to make sure that # subsequent messages will go through our proxy; that's # particularly good if upstream and downstream entities # use different transport protocol if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") { # Uncomment this if you want to use digest authentication # if (!www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "0"); # break; # }; save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using our USRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break; }; }; append_hf("P-hint: usrloc applied\r\n"); route(1); } route[1] { # !! Nathelper if (uri=~"[@:](192.168.|10.|172.(1[6-9]|2[0-9]|3[0-1]).)" && !search("^Route:")){ sl_send_reply("479", "We don't forward to private IP addresses"); break; };
# if client or server know to be behind a NAT, enable relay if (isflagset(6)) { force_rtp_proxy(); }; # NAT processing of replies; apply to all transactions (for example, # re-INVITEs from public to private UA are hard to identify as # NATed at the moment of request processing); look at replies t_on_reply("1"); # send it out now; use stateful forwarding as it works reliably # even for UDP2TCP if (!t_relay()) { sl_reply_error(); }; } # !! Nathelper onreply_route[1] { # NATed transaction ? if (isflagset(6) && status =~ "(183)|2[0-9][0-9]") { fix_nated_contact(); force_rtp_proxy(); # otherwise, is it a transaction behind a NAT and we did not # know at time of request processing ? (RFC1918 contacts) } else if (nat_uac_test("1")) { fix_nated_contact(); }; }
harry gaillac gaillacharry@yahoo.fr 說: hello,
rtpproxy is not documented unless you look at sources
it's a good idea but onsip.org need some fixings too many people waste time to ask for the same problems on mailing list.
documentation is not updated or missing. you can reply me: "do you want to write how-to ?"
onsip.org help me however i spent time (not waste time) to understand why i could not call others domains or get rtp streams with proxy rtp.
Regards
Harry
--- "Greger V. Teigre" a 嶰rit :
I have registered the following issue with a suggestion for README text: http://bugs.sip-router.org/browse/SER-45
I encourage everybody to register documentation needs!! g-)
harry gaillac wrote:
look at rtpp_defines.h re-compile rtpproxy. put a rtpproxy script in /etc/rc.d/init.d redhat you must add option in this script if ser run on
the
same box. So look at your ser.cfg script if you want call
others
domains or your own domain
Harry
--- Freeman a 嶰rit :
How can i get more information about config port range of rtpproxy, because not found in onsip.org !
Tks a Lot ! Freeman
harry gaillac 說:Hello,
If ser and rtpproxy run on the same box your
ser.cfg
is wrong.
you need to define rtp range ports when you
compile
rtpproxy according to the rules of you fiwerall
Look at onsip.org for help !
Harry --- Freeman a 嶰rit :
Hi,
I installed "Ser-0.8.14" + "nathelper" + "rtpproxy" in RedHat 9.0, and add "./rtpproxy"
in
startup script, when i tried both sipsoftphone
in
the internet behind NAT that can connect but "no voice" and auto hang-up, but when both
sipsoftphone
in local network that no problem !
Which port range i need release for rtpproxy in
the
firewall ?
my ser.cfg config as below :
# ----------- global configuration parameters
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) /* Uncomment these lines to enter debugging mode fork=no */ #log_stderror=yes #debug=4 check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo"
# ------------------ module loading
loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule
"/usr/local/lib/ser/modules/maxfwd.so"
loadmodule
"/usr/local/lib/ser/modules/usrloc.so"
loadmodule
"/usr/local/lib/ser/modules/registrar.so"
loadmodule
"/usr/local/lib/ser/modules/textops.so"
loadmodule
"/usr/local/lib/ser/modules/nathelper.so"
# Uncomment this if you want digest
authentication
# mysql.so must be loaded ! #loadmodule
"/usr/local/lib/ser/modules/dbtext.so"
#loadmodule "/usr/local/lib/ser/modules/auth.so" #loadmodule
"/usr/local/lib/ser/modules/auth_db.so"
#loadmodule
"/usr/local/lib/ser/modules/mysql.so"
# ----------------- setting module-specific parameters --------------- # -- usrloc params -- modparam("usrloc", "db_mode", 0) #modparam("auth_db", "db_url", "db:/var/dbtext") #modparam("auth_db", "user_column", "user") #modparam("auth_db", "domain_column", "domain") #modparam("auth_db", "password_column",
"password")
#modparam("auth_db", "calculate_ha1", 1) #modparam("auth_db", "password_column_2",
"ha1_2")
modparam("registrar", "nat_flag", 6) modparam("nathelper", "natping_interval", 30) #
Ping
interval 30 s modparam("nathelper", "ping_nated_only", 1) #
Ping
only clients behind NAT modparam("nathelper", "rtpproxy_sock","/var/run/rtpproxy.sock") # -- auth params -- # Uncomment if you are using auth module # #modparam("auth_db", "calculate_ha1", yes) # # If you set "calculate_ha1" parameter to yes
(which
true in this config), # uncomment also the following parameter) # #modparam("auth_db", "password_column",
"password")
# -- rr params -- # add value to ;lr param to make some broken UAs happy modparam("rr", "enable_full_lr", 1) # ------------------------- request routing
logic
# main routing logic #define NAT_UAC_TEST_C_1918 0x01 /*
- test for occurences of RFC1918 addresses in
Contact
- header field
*/ #define NAT_UAC_TEST_RCVD 0x02 /*
- test if source address of signaling is
different
from
- address advertised in Via
*/ #define NAT_UAC_TEST_V_1918 0x04 /*
- test for occurences of RFC1918 addresses in
SDP
body */ #define NAT_UAC_TEST_S_1918 0x08 /*
- test for occurences of RFC1918 addresses top
Via
*/ route{ # initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; if (nat_uac_test("3")) { append_hf("Alex-hint: NAThelper\r\n"); fix_nated_contact(); # Rewrite contact with
source
IP of signalling if (method == "REGISTER" || ! search("^Record-Route:")) { #if (www_authorize("iptel.org", "subscriber")) { # www_challenge("iptel.org", "1"); # }; if (method == "INVITE") { append_hf("Alex-hint: SDP rewritten\r\n"); fix_nated_sdp("3"); # Add direction=active to
SDP
}; log("LOG: Someone trying to register from
private
=== message truncated ===
___________________________________________________________________________ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger T幨嶰hargez cette version sur http://fr.messenger.yahoo.com
_______________________________________________ Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
有即時通知,收艂
-
Freeman -
Greger V. Teigre -
harry gaillac