[OpenSIPS-Users] TLS discrepancy between 1.7.1 and 1.11.5
bogdan at opensips.org
Mon Aug 31 11:21:18 CEST 2015
Can you post of pastebin (or similar) the SIP capture showing the
incoming NOTIFY (via UDP) from Asterisk and the outgoing NOTIFY
(supposedly via TLS) to UAC ?
Also the SUBSCRIBE request going from OpenSIPS to Asterisk will help alot.
OpenSIPS Founder and Developer
On 30.08.2015 18:22, Matt Hamilton wrote:
> We use Opensips (with TLS) as a dispatcher to multiple Asterisk
> servers. Currently we are in the process of upgrading from 1.7.1 to
> 1.11.5, and we ran into a discrepancy between 1.7.1 and 1.11.5
> regarding SIP NOTIFY messages.
> Here is the flow (both ways):
> UAC (TLS) -> Opensips (UDP)-> Asterisk
> Asterisk (UDP) -> Opensips (TLS)-> UAC
> In 1.7.1, all messages between Opensips and UAC were encrypted -
> didn't matter if it was originated at UAC or Asterisk.
> In 1.11.5, the SIP NOTIFY messages coming from Asterisk are sent to
> UAC unencrypted (and not accepted by UAC). Here is the request that
> Opensips receives and sends to the UAC in plaintext:
> Request-Line: NOTIFY sip:101 at 22.214.171.124:5075;transport=tls;nat=yes SIP/2.0
> Anything we can do to have that leg encrypted as well?
> Users mailing list
> Users at lists.opensips.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users