[OpenSIPS-Devel] tls_mgm issues
Ovidiu Sas
osas at voipembedded.com
Thu Sep 10 18:21:05 CEST 2015
The documentation for tls_mgm module is not updated:
- all the modules in modparam examples are set to proto_tls instead of tls_mgm
- the tls_client_domain_avp should be client_domain_avp
Why the client_domain_avp supports only integer named AVPs?
When I try to load the tls protocol, the server will not start and
will fail with the following error:
ERROR:tls_mgm:init_tls_domains: cannot create ssl context for tls[0.0.0.0:0]
Here are the relevant params:
listen=tls:192.168.2.61:5061
loadmodule "tls_mgm.so"
modparam("tls_mgm", "server_domain", "1=192.168.2.61:5061")
modparam("tls_mgm", "certificate",
"1:/usr/local/etc/opensips/tls/user/user-cert.pem")
modparam("tls_mgm", "private_key",
"1:/usr/local/etc/opensips/tls/user/user-privkey.pem")
modparam("tls_mgm", "ca_list",
"1:/usr/local/etc/opensips/tls/user/user-calist.pem")
modparam("tls_mgm", "require_cert", "1:1")
loadmodule "proto_tls.so"
On a side note, if port is missing from the server_domain params, the
IP is treated as FQDN.
If the port is mandatory, it should be specified in the documentation.
Regards,
Ovidiu Sas
--
VoIP Embedded, Inc.
http://www.voipembedded.com
More information about the Devel
mailing list