Hello Iñaki.<br><br>Thanks for your answer.<br><br>I am facing the problem both with Grandstream HT-487 and with Zoiper softphone.<br><br>Thanks and regards.<br><br>Sergio.<br><br><div class="gmail_quote">On Wed, Jun 10, 2009 at 4:12 PM, Iñaki Baz Castillo <span dir="ltr"><<a href="mailto:ibc@aliax.net">ibc@aliax.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">El Miércoles, 10 de Junio de 2009, Sergio Gutierrez escribió:<br>
<div><div></div><div class="h5">> Hello to all members.<br>
><br>
> I am running OpenSIPS 1.5.1 with MySQL authentication and authorization<br>
> backend; after some minutes of running, I am getting the following error in<br>
> log:<br>
><br>
> Jun 10 16:00:55 [25744] DBG:auth:reserve_nonce_index: second= 13,<br>
> sec_monit= 1, index= 5<br>
> Jun 10 16:00:55 [25744] DBG:auth:build_auth_hf: nonce index= 5<br>
> Jun 10 16:00:55 [25744] DBG:auth:build_auth_hf: 'Proxy-Authenticate: Digest<br>
> realm="200.13.225.250",<br>
> nonce="4a2f928500000005acf87663581a317e2716f2ae64017424"<br>
> Jun 10 16:00:55 [25744] DBG:auth:check_nonce: comparing<br>
> [4a2f928500000005acf87663581a317e2716f2ae64017424] and<br>
> [4a2f928500000005acf87663581a317e2716f2ae64017424]<br>
> Jun 10 16:00:55 [25744] DBG:auth:post_auth: nonce index= 5<br>
> Jun 10 16:00:55 [25744] DBG:auth:check_nonce: comparing<br>
> [4a2f928500000005acf87663581a317e2716f2ae64017424] and<br>
> [4a2f928500000005acf87663581a317e2716f2ae64017424]<br>
> Jun 10 16:00:55 [25744] DBG:auth:post_auth: nonce index= 5<br>
> Jun 10 16:00:55 [25744] DBG:auth:is_nonce_index_valid: nonce already used<br>
> Jun 10 16:00:55 [25744] DBG:auth:post_auth: nonce index not valid<br>
><br>
> With this, calls fail as I am checking authorization at INVITE. Register<br>
> works without any problem.<br>
><br>
> Any hint on this?<br>
<br>
</div></div>It means that, even if the digest response is valid, it's has been already<br>
used (most probably by the same UA). This is configurable in OpenSIPS: you can<br>
set OpenSIPS to allow multiple usage of same digest response or not.<br>
<br>
Usually, a SIP device sends a request, receives a challenge, generates the<br>
digest response and resends the same requests with credentials.<br>
The next time the device sends a request, it directly adds the previous<br>
credentials. The server can accept it (since it's valid and hasn't yet expires<br>
in the server) or can refuse it by replying 401/407 with a new digest nonce.<br>
Then the UA should generate a new request containing credentials according to<br>
this nonce.<br>
<br>
Your UA seems not to do it. Which phone are you using?<br>
<font color="#888888"><br>
<br>
<br>
<br>
--<br>
Iñaki Baz Castillo <<a href="mailto:ibc@aliax.net">ibc@aliax.net</a>><br>
<br>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org">Users@lists.opensips.org</a><br>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
</font></blockquote></div><br><br clear="all"><br>-- <br>Sergio Gutiérrez<br>