<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 12pt;
font-family:Calibri
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>Adrian<div><br></div><div>Thank you for your reply. I'm a student and still learning about all of this, so your explanation really helps!</div><div><br></div><div>Regards</div><div><br></div><div>Gary<br><br><div><hr id="stopSpelling">From: ag@ag-projects.com<br>Date: Sun, 6 Jul 2014 22:54:17 +0200<br>To: users@lists.opensips.org<br>Subject: Re: [OpenSIPS-Users] OpenSIPS 1.11.1 w/TLS <=> Mediaproxy 2.6.1 /        question about TLS certificates<br><br>MediaProxy certificates are strictly used for securing the communication between the SIP proxy media dispatcher and the media relay. The TLS certificates used by OpenSIPS are meant to be be used in the context of SIP traffic. For all practical reasons these are completely different certificates, especially the one used by OpenSIPS must be issued by a known certificate authority trusted by the SIP clients. The TLS certificate used by MediaProxy does not need to be signed by any particular CA.<div><br></div><div>Regards,</div><div>Adrian<br><div> <br><div><div>On 05 Jul 2014, at 18:40, Gary Patton <<a href="mailto:gpatton.public@outlook.com">gpatton.public@outlook.com</a>> wrote:</div><br class="ecxApple-interchange-newline"><blockquote><div class="ecxhmmessage" style="font-size:12pt;font-family:Calibri;font-style:normal;font-variant:normal;font-weight:normal;letter-spacing:normal;line-height:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;"><div dir="ltr">Hello again everyone!<div><span style="font-size:12pt;"><br></span></div><div><span style="font-size:12pt;">I want to experiment with integrating OpenSIPS 1.11.1 w/TLS support and Mediaproxy 2.6.1 for NAT transversal. The Mediaproxy installation docs say that I need to create and add TLS certificates. But wouldn't Mediaproxy use the OpenSIPS ssl certificates created when installing OpenSIPS to communicate with OpenSIPS. </span><span style="font-size:12pt;">I noticed that the Mediaproxy needs tls certificates to end in *.pem just like OpenSIPS tls certificates end in *.pem. Because they will be in the same security realm,<span class="ecxApple-converted-space"> </span></span><span style="font-size:12pt;">all I need to do is copy the tls certificates I created when installing OpenSIPS w/TLS support to the proper directories in the MediaProxy dispatcher and relay, right?</span><span style="font-size:12pt;"> </span></div><div><span style="font-size:12pt;"><br></span></div><div><span style="font-size:12pt;">Or does MediaProxy need it's own tls certificates to communicate w/OpenSIPS?</span></div><div><span style="font-size:12pt;"><br></span></div><div><span style="font-size:12pt;">Thanks.</span></div><div><span style="font-size:12pt;"><br></span></div><div><span style="font-size:12pt;">Regards</span></div><div><span style="font-size:12pt;"><br></span></div><div><span style="font-size:12pt;">Gary</span></div><div><span style="font-size:12pt;"><br></span></div></div>_______________________________________________<br>Users mailing list<br><a href="mailto:Users@lists.opensips.org">Users@lists.opensips.org</a><br><a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a></div></blockquote></div><br></div></div><br>_______________________________________________
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users</div></div>                                            </div></body>
</html>