[Users] TLS communication between OpenSER servers
jbarry74 at hotmail.com
Thu Apr 19 15:15:27 CEST 2007
I have configured two SIP domains using OpenSER v 1.1.1 with authentication
(digest authentication) and TLS support. Each domain has clients (UAC)
running minisip (3220) with TLS and certificates configured. When there is a
call between a user from one domain to a user in the other domain, the SIP
communications between minisip clients and their corresponding OpenSER
proxies is done via TLS (port 5061/TCP), however, the SIP communication
between the two OpenSER proxies is still done via UDP (port 5060/UDP).
The TLS configuration in both servers is as follows:
disable_tls = 0
listen = tls:192.168.1.10:5061
tls_verify_server = 1
tls_verify_client = 1
tls_require_client_certificate = 1
tls_method = TLSv1
tls_certificate = "/etc/openser/tls/sipdA/sipdA-cert.pem"
tls_private_key = "/etc/openser/tls/sipdA/sipdA-privkey.pem"
tls_ca_list = "/etc/openser/tls/sipdA/sipdA-calist.pem"
Any ideas or suggestions regarding how to enable SIPS (TLS) between OpenSER
Live Search, for accurate results! http://www.live.nl
More information about the Users