authenticating users based on IP address and limiting the number of channels for the users using Kamailio 3.0 and Siremis 1.0
hi, i have been looking for a way to authenticate users based on the IP from they come from . Also i would like to limit the number of channels ( simultaneous calls) that each user can make . is their any way to do this using kamailio 3.0 and siremis 1.0 ?
my configuration is like this:
sipphones --->UserGroup1(Asterisk PBX)---->KamailioSipProxy--->AsteriskPSTNGateway--->PSTN
1. there can be many softphones on the user group 1 and there can be multiple calls coming from there at any time. 2. UserGroup1 is actually another SIP proxy [asterisk] with a fixed public IP 3. Kamailio Sip proxy is the one i am trying to configure . I would like to authenticate UserGroup1 based on its public IP address 4. From kamailio , calls will be forwarded to a asterisk pstn gateway. I would like to put restriction on this one : " User group 1 can not make more than 5 concurrent calls at a time"
can anyone give me some suggestion or point me in some direction where I can do some reading on this one.
Aslo , what would be best way to bill this UserGroup1 ? Using FreeRadius and CDRTool ?
Hi!
Shrouk Khan wrote:
Also i would like to limit the number of channels (simultaneous calls) that each user can make .
I think this blog post will help you forward: http://by-miconda.blogspot.com/2010/01/best-of-new-in-kamailio-300-19-htable...
There are also other approaches. You can find more pointers from list archives: http://lists.sip-router.org/pipermail/sr-users/2009-April/022825.html http://lists.sip-router.org/pipermail/sr-users/2009-August/024352.html
HTH
thnkx all , looking in to it. So far it seems like everything is done on the kamailo.cfg and done manually by hand. Doesnt the siremis/seradmin or any other kamailio/openser portal has anything to do with these kinds of configuration ?
On Thu, Oct 7, 2010 at 4:15 AM, Mikko Lehto mikko.lehto@setera.fi wrote:
On 10/06/2010 10:00 PM, Shrouk Khan wrote:
Doesnt the siremis/seradmin or any other kamailio/openser portal has anything to do with these kinds of configuration ?
Not really. It's the user's responsibility to tell Kamailio/OpenSER what they want it to do; you can think of it as an application programming framework or an SDK.
On 10/06/2010 11:47 AM, Shrouk Khan wrote:
There are a number of ways you could do this. They way I did it by using a group named ipauth. If the user is a member of the group, compare the request IP address to the one in the database. If they match, allow. Otherwise, disallow. If the user is not in the ipauth, we continue to challenge/response authentication.
Also i would like to limit the number of channels ( simultaneous calls) that each user can make .
Take a look at the dialog module. If you want per-user limits make sure you read up about the set_dlg_profile and get_profile_size functions. That's what I use anyway.
Corey
-
Alex Balashov -
Corey Edwards -
Mikko Lehto -
Sergey Okhapkin -
Shrouk Khan