[OpenSIPS-Users] Problem in sending outbound SIP messages via TLS

Klaus Darilion klaus.mailinglists at pernau.at
Mon Sep 1 16:36:23 CEST 2008 

Aug 20 17:00:42 [22847] DBG:core:tcp_send: sending...
Aug 20 17:00:42 [22847] DBG:core:tls_update_fd: New fd is 25
Aug 20 17:00:42 [22847] ERROR:core:tls_connect: something wrong in SSL:
Aug 20 17:00:42 [22847] DBG:core:tcp_send: after write: c= 0xb60f4d78 
n=-1 fd=25
Aug 20 17:00:42 [22847] DBG:core:tcp_send: buf=

Unfortunately the log file does not tell us what the problem was.

Sniff the TLS connection to find out the problem:
1. Does openser establish TCP connection with eyebeam - usually there 
should be an existing TCP/TLS connection - if this is not the case you 
will problems anyway.)

So watch out if there is existing TCP/TLS connection of if a new one is 
setup

If a new one is setup, take a look if the ssl ahdnshak is fine (e.g. use 
ssldump utility)

regards
klaus

Nachiket Tarate schrieb:
> Hi,
> 
> I am currently trying to make Secure RTP calls between my SIP client and 
> the eyeBeam. When eyeBeam is configured for encrypted calls, it uses 
> Secure RTP for media and TLS for SIP signalling.
> 
> I have configured the OpenSIPs server with TLS support.
> 
> The scenario is as shown below:
> 
> 
>  ----------------    UDP      ------------------    TLS    -------------
> |  My SIP Client |  <----->  |  OpenSIPs Server | <-----> | eyeBeam 1.5 |
>  ----------------             ------------------           -------------
>   Linux Machine                Linux Machine             Widows XP machine
> 
> When a call is made from eyeBeam to My SIP client the call gets 
> established properly and the OpenSIPs server acts as a gateway.
> 
> But when a call is made from My SIP client to eyeBeam the OpenSIPs 
> returns the *477 Send failed* response to My SIP client.
> 
> By enabling the debug informaiton on OpenSIPs server, I found that it 
> couldn't do TLS handshake with the eyeBeam and so couldn't send the 
> SIP Request from My SIP client to the eyeBeam.
> 
> In brief the OpenSIPs server can accept the inbound messages via TLS but 
> *it can't send outbound messages via TLS*.
> 
> Can anybody help me to resolve this problem? Please see my opensips.cfg 
> file and OpenSIPs server logs attached with this mail.
> 
> Thanks,
> NT
>  
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users

More information about the Users mailing list