proto_bins Module

The following modules must be loaded before this module:

The following libraries or applications must be installed before running OpenSIPS with this module loaded:

The default port to be used by all BINS listeners.

Default value is 5556.

...
modparam("proto_bins", "bins_port", 5557)
...

Sets the timeout (in milliseconds) for the SSL/TLS handshake sequence to complete. It may be necessary to increase this value when using a CPU intensive cipher for the connection to allow time for keys to be generated and processed.

The timeout is invoked during acceptance of a new connection (inbound) and during the wait period when a new session is being initiated (outbound).

Default value is 100.

param("proto_tls", "bins_handshake_timeout", 200) # number of milliseconds

			

Sets the timeout (in milliseconds) for blocking send operations to complete.

The send timeout is invoked for all TLS write operations, excluding the handshake process (see: bins_handshake_timeout)

Default value is 100 ms.

...
modparam("proto_bins", "bins_send_timeout", 200)
...

The maximum number of chunks in which a BINS message is expected to arrive via TCP. If a received packet is more fragmented than this, the connection is dropped (either the connection is very overloaded and this leads to high fragmentation - or we are the victim of an ongoing attack where the attacker is sending very fragmented traffic in order to decrease server performance).

Default value is 32.

...
modparam("proto_bins", "bins_max_msg_chunks", 8)
...

Specifies whether the TCP/TLS connect and write operations should be done in an asynchronous mode (non-blocking connect and write) or not. If disabled, OpenSIPS will block and wait for TCP/TLS operations like connect and write.

Default value is 1 (enabled).

...
modparam("proto_bins", "bins_async", 0)
...

If bins_async is enabled, this specifies the maximum number of BINS messages that can be stashed for later/async writing. If the connection pending writes exceed this number, the connection will be marked as broken and dropped.

Default value is 32.

...
modparam("proto_bins", "bins_async_max_postponed_chunks", 16)
...

If bin_async is enabled, this specifies the number of milliseconds that a connect will be tried in blocking mode (optimization). If the connect operation lasts more than this, the connect will go to async mode and will be passed to TCP MAIN for polling.

Default value is 100 ms.

...
modparam("proto_bins", "bins_async_local_connect_timeout", 200)
...

If tls_async is enabled, this specifies the number of milliseconds that a TLS handshake should be tried in blocking mode (optimization). If the handshake operation lasts more than this, the write will go to async mode and will be passed to tls MAIN for polling.

Default value is 10 ms.

	...
	modparam("proto_tls", "bins_async_handshake_timeout", 100)
	...
	

Trace destination as defined in the tracing module. Currently the only tracing module is proto_hep. Network events such as connect, accept and connection closed events shall be traced along with errors that could appear in the process. For each connection that is created an event containing information about the client and server certificates, master key and network layer information shall be sent.

WARNING: A tracing module must be loaded in order for this parameter to work. (for example proto_hep).

Default value is none(not defined).

...
modparam("proto_hep", "hep_id", "[hep_dest]10.0.0.2;transport=tcp;version=3")

modparam("proto_bins", "trace_destination", "hep_dest")
...

This controls whether tracing for tls is on or not. You still need to define trace_destinationin order to work, but this value will be controlled using mi function bins_trace.

...
modparam("proto_bins", "trace_on", 1)
...

Name: bins_trace

Parameters:

MI FIFO Command Format:

			opensips-cli -x mi bins_trace on