Or just bad math on my part, I turned up logging, and found:<br><br>Apr 2 15:15:58 ip-10-160-23-47 /usr/local/sbin/opensips[30579]: DBG:auth:pre_auth: credentials with given realm not found <br><br>So it would appear this is not in fact a nonce expire issue, but a credentials disappearing issue. Not sure why those credentials are disappearing so consistently every other register.<br>
<br>-dg<br>
<br><br><div class="gmail_quote">On Fri, Apr 2, 2010 at 2:06 PM, Daniel Goepp <span dir="ltr"><<a href="mailto:dan@goepp.net">dan@goepp.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Ah...I see what that retcode is anyway, 2^32 = 4294967296, so those are really just -4 first, no credentials, then -3 stale nonce<br><font color="#888888"><br>-dg</font><div><div></div><div class="h5"><br><br><br>On Fri, Apr 2, 2010 at 1:50 PM, Daniel Goepp <<a href="mailto:dan@goepp.net" target="_blank">dan@goepp.net</a>> wrote:<br>
><br>> A quick follow up on this, I enabled some logging, but the retcode is not making any sense to me (probably because I'm using it wrong). <br>><br>> From my config:<br>><br>> xlog ("REGISTER $fu");<br>
> # authenticate the REGISTER requests (uncomment to enable auth)<br>> if (!www_authorize("", "subscriber"))<br>> {<br>> xlog ("Not authorized - challenging, error: $retcode");<br>
> www_challenge("", "1");<br>> exit;<br>> }<br>><br>> Then in the log:<br>><br>> Apr 2 13:49:38 ip-10-160-23-47 /usr/local/sbin/opensips[30180]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>
> Apr 2 13:49:38 ip-10-160-23-47 /usr/local/sbin/opensips[30180]: Not authorized - challenging, error: 4294967293<br>> Apr 2 13:49:38 ip-10-160-23-47 /usr/local/sbin/opensips[30182]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>
> Apr 2 13:49:58 ip-10-160-23-47 /usr/local/sbin/opensips[30180]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>> Apr 2 13:50:18 ip-10-160-23-47 /usr/local/sbin/opensips[30182]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>
> Apr 2 13:50:18 ip-10-160-23-47 /usr/local/sbin/opensips[30182]: Not authorized - challenging, error: 4294967292<br>> Apr 2 13:50:18 ip-10-160-23-47 /usr/local/sbin/opensips[30180]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>
> Apr 2 13:50:38 ip-10-160-23-47 /usr/local/sbin/opensips[30182]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>> Apr 2 13:50:58 ip-10-160-23-47 /usr/local/sbin/opensips[30180]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>
> Apr 2 13:50:58 ip-10-160-23-47 /usr/local/sbin/opensips[30180]: Not authorized - challenging, error: 4294967292<br>> Apr 2 13:50:58 ip-10-160-23-47 /usr/local/sbin/opensips[30182]: REGISTER <a href="mailto:sip%3A1001@vidtel.com" target="_blank">sip:1001@vidtel.com</a><br>
><br>> Also I'm running 1.6.2-tls compiled today from latest 1_6 branch in SVN.<br>><br>> -dg<br>><br>><br>> On Fri, Apr 2, 2010 at 1:40 PM, Daniel Goepp <<a href="mailto:dan@goepp.net" target="_blank">dan@goepp.net</a>> wrote:<br>
>><br>>> I'm having some trouble with nonce expiring I believe. The problem is that every other one of my endpoint registrations is doing an auth challenge w/401.<br>>><br>>> From my config:<br>
>> modparam("registrar", "default_expires", 60)<br>>> modparam("registrar", "min_expires", 60)<br>>> modparam("registrar", "max_expires", 60<br>
>><br>>> modparam("auth", "nonce_expire", 3600)<br>>><br>>> From this I would expect the devices to try to register every 60 seconds, and get challenged every hour with a new nonce.<br>
>><br>>> Comments on why OpenSIPS is challenging every other registration?<br>>><br>>> Thanks<br>>><br>>> -dg<br>><br><br>
</div></div></blockquote></div><br>