From voransoy at gmail.com Wed Jul 2 10:50:14 2025 From: voransoy at gmail.com (Volkan Oransoy) Date: Wed, 2 Jul 2025 11:50:14 +0100 Subject: [OpenSIPS-Users] Random auth realms Message-ID: Hi all I store user authentication data on a subscriber table with precalculated hashes for obvious reasons. Lately we are having issues with these new AI conversations services. They send requests with random realms, especially with IP addresses. What I understand, if I store the plain text password and calculate ha1 at request time, I can accept these requests even if the realm is different. But I don't want to do that. I tried to tweak auth_db, when I set `use_domain` to 0, Opensips does not add the realm to the query but still use is on ha1 challenge since the RFC requires I think. Is there a best practice to handle this issue? Best regards -- Volkan Oransoy -------------- next part -------------- An HTML attachment was scrubbed... URL: From joao.coucelo at celfocus.com Thu Jul 3 15:13:39 2025 From: joao.coucelo at celfocus.com (=?utf-8?B?Sm/Do28gQ291Y2Vsbw==?=) Date: Thu, 3 Jul 2025 15:13:39 +0000 Subject: [OpenSIPS-Users] b2b_logic bridge with no-late-sdp unable to get bentity1->to_uri Message-ID: Hi all, I successfully run the prepaid b2b_bridge scenario from https://opensips.org/Documentation/Tutorials-B2BUA-3-2 However, I cannot use the SDP less INVITE to initiate the connection with the "callee". Hence I was trying to use the "no-late-sdp", but I get an error when the SDPless 200 OK response from the "caller" is received. On the b2b_logic_request route I simply added two extra args: b2b_bridge("caller", "callee", "", "no-late-sdp"); The SPDless Re-INVITE 200 OK is received on process_bridge_200OK(), but it fails to get the bentity1->to_uri       DBG:b2b_logic:process_bridge_200OK: Send invite to [] Proxy [] When initiating the bridge, I can confirm that the new client entity is added correctly with the to_uri       DBG:b2b_logic:b2bl_entity_new: First new entity [callee] saved in context       opensips_1 | Jul 3 13:25:55 [10] DBG:b2b_logic:b2bl_bridge: New entity, dest = [sip:+351940026774 at 172.16.254.101:5060]       opensips_1 | Jul 3 13:25:55 [10] DBG:b2b_logic:b2bl_bridge: New entity, dest = [sip:+351940026774 at 172.16.254.101:5060]       opensips_1 | Jul 3 13:25:55 [10] DBG:b2b_logic:b2bl_create_new_entity: new entity type [1] [0x7f74039c9308]->[]       opensips_1 | Jul 3 13:25:55 [10] DBG:b2b_logic:bridging_start_old_ent: Send reInvite to old entity       opensips_1 | Jul 3 13:25:55 [10] DBG:b2b_logic:b2bl_create_new_entity: new entity type [1] [0x7f74039cb620]->[] Looking at the code, it appears to me the new_br_ent[1]->dest_uri is properly filled when preparing the bridge, and so the b2bl_create_new_entity() should be filling the to_uri and the returned entity properly stored on the tuple->bridge_entities[1] However, when receiving the 200 OK, there the same tuple->bridge_entities[1] returns no to_uri..       opensips_1 | Jul 3 13:25:55 [12] DBG:core:MD5StringArray: MD5 calculated: 38b99f724da7821223927ccebf7b95d6       opensips_1 | Jul 3 13:25:55 [12] DBG:b2b_entities:generate_tag: from_tag = 38b99f724da7821223927ccebf7b95d6-0668       opensips_1 | Jul 3 13:25:55 [12] DBG:core:parse_headers_aux: flags=ffffffffffffffff       opensips_1 | Jul 3 13:25:55 [12] DBG:tm:t_uac: next_hop=<>       opensips_1 | Jul 3 13:25:55 [12] ERROR:core:parse_uri: uri too short: <> (0)       opensips_1 | Jul 3 13:25:55 [12] ERROR:tm:uri2proxy: bad_uri:       opensips_1 | Jul 3 13:25:55 [12] ERROR:b2b_entities:_client_new: while sending request with t_request       opensips_1 | Jul 3 13:25:55 [12] ERROR:b2b_logic:b2bl_new_client: Failed to create client id       opensips_1 | Jul 3 13:25:55 [12] ERROR:b2b_logic:bridging_new_client: Failed to generate new client       opensips_1 | Jul 3 13:25:55 [12] ERROR:b2b_logic:_b2b_handle_reply: Failed to process bridging 200OK for Invite If there is an issue with the code, I cannot find it. Maybe I'm simply misusing this feature. Any thoughts? -------------- next part -------------- An HTML attachment was scrubbed... URL: From spanda at 3clogic.com Fri Jul 4 05:06:50 2025 From: spanda at 3clogic.com (Sasmita Panda) Date: Fri, 4 Jul 2025 10:36:50 +0530 Subject: [OpenSIPS-Users] Need some inforamtion on opensips change logs . Message-ID: I am using opensips 3.4 right now . I have the DB at aws RDS . If someone logged into the DB and made some changes to the table I am not getting that information stored anywhere . If I will talk about dynamic routing only (this module only can hamper my calls ) , any changes in the table at runtime , when my service get restarted Can I get the latest table information on the logs itself ? So that I can check from the logs what changes made in the DB before restart . If this is not possible , then what is the other way to do so ? Please suggest . I am stuck on soothing here before production live . *Thanks & Regards* *Sasmita Panda* *Senior Network Testing and Software Engineer* *3CLogic , ph:07827611765* -------------- next part -------------- An HTML attachment was scrubbed... URL: From david.villasmil.work at gmail.com Fri Jul 4 12:52:30 2025 From: david.villasmil.work at gmail.com (David Villasmil) Date: Fri, 4 Jul 2025 14:52:30 +0200 Subject: [OpenSIPS-Users] Need some inforamtion on opensips change logs . In-Reply-To: References: Message-ID: Hello, 1. If you suspect someone can mess up your routing tables without authorization, you have a much bigger problem that just what you’re asking about. This is the number one thing that shouldn’t happen. 2. If by some security hole in your infrastructure, it does happen, you can restore the latest backup. You should always have backups made automatically by AWS. 3. Make sure that can’t happen by implementing proper security measures like using only private RDS instead of public, narrow down security groups, use a read only user in Kamailio if possible, etc. Hope that helps Regards, David Villasmil email: david.villasmil.work at gmail.com On Fri, Jul 4, 2025 at 7:10 AM Sasmita Panda wrote: > I am using opensips 3.4 right now . I have the DB at aws RDS . > > If someone logged into the DB and made some changes to the table I am not > getting that information stored anywhere . > > If I will talk about dynamic routing only (this module only can hamper my > calls ) , any changes in the table at runtime , when my service get > restarted Can I get the latest table information on the logs itself ? So > that I can check from the logs what changes made in the DB before restart . > > If this is not possible , then what is the other way to do so ? Please > suggest . I am stuck on soothing here before production live . > > > *Thanks & Regards* > *Sasmita Panda* > *Senior Network Testing and Software Engineer* > *3CLogic , ph:07827611765* > _______________________________________________ > Users mailing list > Users at lists.opensips.org > http://lists.opensips.org/cgi-bin/mailman/listinfo/users > -------------- next part -------------- An HTML attachment was scrubbed... URL: From david.villasmil.work at gmail.com Fri Jul 4 12:55:49 2025 From: david.villasmil.work at gmail.com (David Villasmil) Date: Fri, 4 Jul 2025 14:55:49 +0200 Subject: [OpenSIPS-Users] Need some inforamtion on opensips change logs . In-Reply-To: References: Message-ID: One last thing: opensips is a proxy, not a tool to monitor AWS/RDS audit logs. There are other ways in AWS to do that, such as cloudtrail, cloudwatch log monitor and filters, RDS logging facilities, etc. you can raise alerts based on that. I said “Kamailio” but always meant OpenSIPS. Regards, David Villasmil email: david.villasmil.work at gmail.com On Fri, Jul 4, 2025 at 2:52 PM David Villasmil < david.villasmil.work at gmail.com> wrote: > Hello, > > 1. If you suspect someone can mess up your routing tables without > authorization, you have a much bigger problem that just what you’re asking > about. This is the number one thing that shouldn’t happen. > 2. If by some security hole in your infrastructure, it does happen, you > can restore the latest backup. You should always have backups made > automatically by AWS. > 3. Make sure that can’t happen by implementing proper security measures > like using only private RDS instead of public, narrow down security groups, > use a read only user in Kamailio if possible, etc. > > Hope that helps > > Regards, > > David Villasmil > email: david.villasmil.work at gmail.com > > > > On Fri, Jul 4, 2025 at 7:10 AM Sasmita Panda wrote: > >> I am using opensips 3.4 right now . I have the DB at aws RDS . >> >> If someone logged into the DB and made some changes to the table I am not >> getting that information stored anywhere . >> >> If I will talk about dynamic routing only (this module only can hamper my >> calls ) , any changes in the table at runtime , when my service get >> restarted Can I get the latest table information on the logs itself ? So >> that I can check from the logs what changes made in the DB before restart . >> >> If this is not possible , then what is the other way to do so ? Please >> suggest . I am stuck on soothing here before production live . >> >> >> *Thanks & Regards* >> *Sasmita Panda* >> *Senior Network Testing and Software Engineer* >> *3CLogic , ph:07827611765* >> _______________________________________________ >> Users mailing list >> Users at lists.opensips.org >> http://lists.opensips.org/cgi-bin/mailman/listinfo/users >> > -------------- next part -------------- An HTML attachment was scrubbed... URL: From mayamatakeshi at gmail.com Sun Jul 6 05:36:20 2025 From: mayamatakeshi at gmail.com (mayamatakeshi) Date: Sun, 6 Jul 2025 14:36:20 +0900 Subject: [OpenSIPS-Users] node module to help writing SIP functional/integration tests Message-ID: Over the years I have been slowly writing a node module to help me write SIP functional/integration tests: https://github.com/MayamaTakeshi/sip-lab I have been adding new features as I needed for new kinds of test but didn't have time to document it. But now I need to mentor some newcomers to the company I work for and had to do it. I asked gemini to do it for me and got: https://github.com/MayamaTakeshi/sip-lab/blob/master/DOC.md It might be of help for other people so I am sharing it. -------------- next part -------------- An HTML attachment was scrubbed... URL: From spanda at 3clogic.com Mon Jul 7 05:53:21 2025 From: spanda at 3clogic.com (Sasmita Panda) Date: Mon, 7 Jul 2025 11:23:21 +0530 Subject: [OpenSIPS-Users] Need some inforamtion on opensips change logs . In-Reply-To: <9da46058-fe3b-4e85-9215-f58d099a1ff2@voipplus.net> References: <9da46058-fe3b-4e85-9215-f58d099a1ff2@voipplus.net> Message-ID: Thanks for the information . I have the backup enabled in RDS and also the RDS is private inside my VPC and has a minimal security group to block the access . And also I used to reload the module rather than restarting opensips on every change . In-addition to this , I have created an audit table for my tables which has manual changes . So that whenever there is any change to these tables there will be an entry in the audit table . So later on I can validate the audit table if needed . *Thanks & Regards* *Sasmita Panda* *Senior Network Testing and Software Engineer* *3CLogic , ph:07827611765* On Fri, Jul 4, 2025 at 6:43 PM Marcin Groszek wrote: > You may reload d-routing module using cli after changes and without > restarting opensips: > opensips-cli -x mi dr_reload > > > On 7/4/25 00:06, Sasmita Panda wrote: > > I am using opensips 3.4 right now . I have the DB at aws RDS . > > If someone logged into the DB and made some changes to the table I am not > getting that information stored anywhere . > > If I will talk about dynamic routing only (this module only can hamper my > calls ) , any changes in the table at runtime , when my service get > restarted Can I get the latest table information on the logs itself ? So > that I can check from the logs what changes made in the DB before restart . > > If this is not possible , then what is the other way to do so ? Please > suggest . I am stuck on soothing here before production live . > > > *Thanks & Regards* > *Sasmita Panda* > *Senior Network Testing and Software Engineer* > *3CLogic , ph:07827611765* > > _______________________________________________ > Users mailing listUsers at lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users > > -- > Best Regards: > Marcin Groszek > Business Voip Resource.http://www.voipplus.net > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From spanda at 3clogic.com Mon Jul 7 06:34:55 2025 From: spanda at 3clogic.com (Sasmita Panda) Date: Mon, 7 Jul 2025 12:04:55 +0530 Subject: [OpenSIPS-Users] Need some information around opensips logging . Message-ID: HI . I am using opensips 3.4 and my application is running on eks cluster . I want opensips to do console logging and also logging to a file on syslog . Is this possible ? *Thanks & Regards* *Sasmita Panda* *Senior Network Testing and Software Engineer* *3CLogic , ph:07827611765* -------------- next part -------------- An HTML attachment was scrubbed... URL: From david.villasmil.work at gmail.com Mon Jul 7 10:30:37 2025 From: david.villasmil.work at gmail.com (David Villasmil) Date: Mon, 7 Jul 2025 12:30:37 +0200 Subject: [OpenSIPS-Users] Need some inforamtion on opensips change logs . In-Reply-To: References: <9da46058-fe3b-4e85-9215-f58d099a1ff2@voipplus.net> Message-ID: Hello Samsita, That's all great to read! My point was a proxy is not the right tool to do everything. There are better tools to audit your db access and manipulation. Regards, David Villasmil email: david.villasmil.work at gmail.com On Mon, Jul 7, 2025 at 7:56 AM Sasmita Panda wrote: > Thanks for the information . > > I have the backup enabled in RDS and also the RDS is private inside my VPC > and has a minimal security group to block the access . > > And also I used to reload the module rather than restarting opensips on > every change . > > In-addition to this , I have created an audit table for my tables which > has manual changes . So that whenever there is any change to these tables > there will be an entry in the audit table . > So later on I can validate the audit table if needed . > > > *Thanks & Regards* > *Sasmita Panda* > *Senior Network Testing and Software Engineer* > *3CLogic , ph:07827611765* > > > On Fri, Jul 4, 2025 at 6:43 PM Marcin Groszek wrote: > >> You may reload d-routing module using cli after changes and without >> restarting opensips: >> opensips-cli -x mi dr_reload >> >> >> On 7/4/25 00:06, Sasmita Panda wrote: >> >> I am using opensips 3.4 right now . I have the DB at aws RDS . >> >> If someone logged into the DB and made some changes to the table I am not >> getting that information stored anywhere . >> >> If I will talk about dynamic routing only (this module only can hamper my >> calls ) , any changes in the table at runtime , when my service get >> restarted Can I get the latest table information on the logs itself ? So >> that I can check from the logs what changes made in the DB before restart . >> >> If this is not possible , then what is the other way to do so ? Please >> suggest . I am stuck on soothing here before production live . >> >> >> *Thanks & Regards* >> *Sasmita Panda* >> *Senior Network Testing and Software Engineer* >> *3CLogic , ph:07827611765* >> >> _______________________________________________ >> Users mailing listUsers at lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users >> >> -- >> Best Regards: >> Marcin Groszek >> Business Voip Resource.http://www.voipplus.net >> >> _______________________________________________ > Users mailing list > Users at lists.opensips.org > http://lists.opensips.org/cgi-bin/mailman/listinfo/users > -------------- next part -------------- An HTML attachment was scrubbed... URL: From david.villasmil.work at gmail.com Mon Jul 7 10:42:13 2025 From: david.villasmil.work at gmail.com (David Villasmil) Date: Mon, 7 Jul 2025 12:42:13 +0200 Subject: [OpenSIPS-Users] Need some information around opensips logging . In-Reply-To: References: Message-ID: Hello OpenSIPS can log to both if you have rsyslog on the container by adding to /etc/rsyslog.d/opensips.conf something like `local0.* /var/log/opensips.log` Also take a look at fluentd. You can easily use fluentd to capture the console output and log it to a local file or ship it to a logging backend. Regards, David Villasmil email: david.villasmil.work at gmail.com On Mon, Jul 7, 2025 at 8:39 AM Sasmita Panda wrote: > HI . > > I am using opensips 3.4 and my application is running on eks cluster . > I want opensips to do console logging and also logging to a file on syslog > . > Is this possible ? > > > *Thanks & Regards* > *Sasmita Panda* > *Senior Network Testing and Software Engineer* > *3CLogic , ph:07827611765* > _______________________________________________ > Users mailing list > Users at lists.opensips.org > http://lists.opensips.org/cgi-bin/mailman/listinfo/users > -------------- next part -------------- An HTML attachment was scrubbed... URL: From simon at softnet.si Mon Jul 7 14:41:25 2025 From: simon at softnet.si (Simon Gajski) Date: Mon, 7 Jul 2025 16:41:25 +0200 Subject: [OpenSIPS-Users] Additional accounting while using append_branch Message-ID: Hi to all Is there a way to add additional accounting info for each append_branch? append_branch("sip:$avp(forking_num)@1.2.3.4:5060"); I am using opensips 3.5 My problem here is that I am doing parallel forking with opensips subscriber number and mobile number. I get ringing on both numbers, calls are working fine no matter which side answers. But I would need additional info in accounting table that my subscriber sent forking call to pstn gateway. So far only first cdr is stored to my acc table of a call comming to my opensips subscriber number. Thanks for all help BR Simon -------------- next part -------------- An HTML attachment was scrubbed... URL: From joao.coucelo at celfocus.com Tue Jul 8 11:07:12 2025 From: joao.coucelo at celfocus.com (=?Windows-1252?Q?Jo=E3o_Coucelo?=) Date: Tue, 8 Jul 2025 11:07:12 +0000 Subject: [OpenSIPS-Users] cannot bridge_retry when bridge established with prov_media_uri Message-ID: Hi all, I'm validating the different supported b2b_bridge scenarios. I noticed something that I was not expecting in the b2b_bridge_retry scenario; i could not do a bridge_retry when the b2b_bridge is established with prov_media_uri. The bridge retry is done for entity 1, and in this case that is the media entity; however the retry should be done for the "callee" entity, and not for the media. I've added to my b2b_logic_reply logic to run b2b_client_new() and b2b_bridge_retry() upon a 4xx error response. This works when the b2b_bridge is established with two entites, e.g. b2b_bridge("caller", "callee"); NOTICE:b2b_logic_reply: SIP Reply Code=183, Reason=Session In Progress, Entity=callee, Key=B2B.251.4266553.1751971857.746992624, Call Context ID= NOTICE:b2b_logic_reply: SIP Reply Code=486, Reason=Busy Here, Entity=callee, Key=B2B.251.4266553.1751971857.746992624, Call Context ID= INFO:b2b_logic:b2bl_add_client: adding entity [0x7fc8f07da818]->[B2B.250.2854263.1751971857.1521299734] to tuple [0x7fc8f07caf08]->[254.0] NOTICE:b2b_logic_reply: SIP Reply Code=183, Reason=Session In Progress, Entity=, Key=B2B.250.2854263.1751971857.1521299734, Call Context ID= NOTICE:b2b_logic_reply: SIP Reply Code=200, Reason=OK, Entity=, Key=B2B.250.2854263.1751971857.1521299734, Call Context ID= However, if I add the media_url to the b2b_bridge, the b2b_logic_reply route is not able to associate the incoming 4xx error response to the callee entity. NOTICE:b2b_logic_reply: SIP Reply Code=183, Reason=Session In Progress, Entity=, Key=, Call Context ID= NOTICE:b2b_logic_reply: SIP Reply Code=486, Reason=Busy Here, Entity=, Key=, Call Context ID= If I remove the if condition that checks that the error was received for the “callee” entity and do the b2b_bridge_retry anyway, I get ERROR:b2b_logic:b2b_script_bridge_retry: The 'b2b_bridge_retry' function can only be used fornegative replies from the second entity [Picture] João Coucelo UC Specialist m: (+351) 916 312 940 celfocus.com [Picture] -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Outlook-Picture.png Type: image/png Size: 16883 bytes Desc: Outlook-Picture.png URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Outlook-Picture.png Type: image/png Size: 2519 bytes Desc: Outlook-Picture.png URL: From Ben.Laing at dals.co.uk Wed Jul 9 10:11:48 2025 From: Ben.Laing at dals.co.uk (Ben Laing) Date: Wed, 9 Jul 2025 10:11:48 +0000 Subject: [OpenSIPS-Users] Re-homing a large number of subscribers Message-ID: Hi folks, I’m using OpenSIPs as a load balancer in an active/active setup. I’m trying to set up call re-homing when a node in the cluster goes down, largely following https://blog.opensips.org/2019/10/03/re-homing-your-calls-with-opensips-3-0/ . I’ve got separate shtags lb1 and lb2 for each node. When the cluster down is detected, I am running a python script that sets the remaining node as active then aims to rehome the calls in progress. Currently, that works by getting dlg_list_ctx, then running dlg_send_sequential for each dialog with a shtag matching the down node (dialog[‘context’][‘values’][‘dlgX_shtag’]. That’s fine for a few calls, but fails when we get to a few hundred because the dlg_list_ctx throws an error: Jul 9 09:47:00 ip-10-4-40-11 /usr/sbin/opensips[83438]: ERROR:core:print_mi_response: Failed to print JSON Jul 9 09:47:00 ip-10-4-40-11 /usr/sbin/opensips[83438]: ERROR:mi_http:mi_json_answer_to_connection: failed to print json response Any ideas recommendations on how to tackle this? I could use dlg_list_ctx specifying an index/counter to complete in batches, but I’m not quite sure how the indexing works so there’s a worry we’d miss calls. E.g. we do calls 0-40 then 41-80 but if call 0 ends while processing 0-40, does that mean call 41 becomes call 40 so it’s missed from the 41-80 batch. Probably the best solution I have at the moment is to query the DB directly to get the definitively list of call ids, then run dlg_list_ctx specifying and iID then dlg_send_sequential if appropriate. Or just don’t bother checking and run dlg_send_sequential on them all. Any thoughts / suggestions? Best, ‑‑‑‑‑ Ben Laing He/Him Senior Software Developer Email: ben.laing at dals.co.uk Website: www.dals.co.uk Dals, Statham House, Talbot Rd, Stretford, Manchester, M32 0FP Classified - General -------------- next part -------------- An HTML attachment was scrubbed... URL: From bogdan at opensips.org Wed Jul 9 12:14:17 2025 From: bogdan at opensips.org (Bogdan-Andrei Iancu) Date: Wed, 9 Jul 2025 15:14:17 +0300 Subject: [OpenSIPS-Users] OpenSIPS 3.6.0 major release, beta version In-Reply-To: References: Message-ID: <2de159dc-2d83-479f-9a01-ae0e9845cad6@opensips.org> We have news on the topics: the date for the stable OpenSIPS 3.6 release is set for 23rd of July, stay tune! https://opensips.org/About/Version-Overview-3-6-0 Best regards, Bogdan-Andrei Iancu OpenSIPS Founder and Developer https://www.opensips-solutions.com https://www.siphub.com On 21.05.2025 17:57, Bogdan-Andrei Iancu wrote: > Hello there !! > > It is that time of the year to do our iteration - one more year, one > more evolution step, one more OpenSIPS major release. > > So, we are all happy to announce the beta release of *OpenSIPS 3.6.0 > major version* - and this 3.6 version is all about /operational > improvements/, about _Dynamic SIP sockets_ support, about the > _Structured SDP manipulation_, about _Unified branches_, about > _Integrated RTP relay_ and more. A special set of improvements are > integration oriented, like the _Janus_ integration, the _AWS (SQS and > DynamoDB)_ integration or the _REDIS Cluster_ integration. > > But here is the shortest possible description > of this > release; and be aware that it's actually not so short as nothing is > short about 3.6 and what it can do ! > > Please keep in mind that 3.6.0 is still a beta release, targeting mid > July to become fully stable. So, we still have some testing ahead of > us :). > > Many thanks to our awesome community for contributing with ideas, > code, patches, tests and reports! > > Looking for downloading it? See the tarball > or the GIT repo > . > > Enjoy it, > -- > Bogdan-Andrei Iancu > > OpenSIPS Founder and Developer > https://www.opensips-solutions.com > https://www.siphub.com > > _______________________________________________ > Users mailing list > Users at lists.opensips.org > http://lists.opensips.org/cgi-bin/mailman/listinfo/users -------------- next part -------------- An HTML attachment was scrubbed... URL: