<div>Dear Klaus,</div> <div> </div> <div>Thank you very much for your help and reply my message. Thank you very much.</div> <div>I am very happy to read the reply from you.</div> <div> </div> <div>Klaus, maybe I am too stupid, may I ask you question anymore? Please...</div> <div>may I ask you about TLS again? </div> <div>Because I am not sure that the configuration that I have made before, is good. Can I ask you? <BR><BR>1. Here is : <BR><BR>In my openser.cfg, for support TLS, I just uncomment the TLS support (the certificate). Here is the part of my openser.cfg : <BR><BR># uncomment the following lines for TLS support <BR>disable_tls = 0 <BR>listen = tls:202.95.149.251:5061 <BR>tls_verify_client = on <BR>tls_require_client_certificate = on <BR>tls_verify_server=on <BR>tls_method = TLSv1 <BR>tls_certificate = "/usr/local/etc/openser/tls/user/user-cert.pem" <BR>tls_private_may I ask you about TLS again? <BR><BR>Is this way correct? or there is another
configuration that I must make or I have added in openser.cfg, in order the TLS can run successfully? <BR></div> <div>2 . You said that I can test it by using 2 openser server. I have built it. One using Fedora core 4 and the othe using Redhat 9. But I am confused, how to connect this two openser server? What I have added in openser.cfg in order both of the server can be used to communicate and test TLS ? Would you mind tell me Klaus?</div> <div>Please give me a suggestion..Please</div> <div> </div> <div>Thank you very much,</div> <div>Thank you</div> <div>Regards,</div> <div> </div> <div> </div> <div>Ferianto<BR><BR><BR><B><I>Klaus Darilion <klaus.mailinglists@pernau.at></I></B> wrote:</div> <BLOCKQUOTE class=replbq style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #1010ff 2px solid">Ferianto siregar wrote:<BR>> Dear all,<BR>> <BR>> Thank you very much for time to read my problem. Thank you very much...<BR>>
All, I have built openser server and I can build it successfully. It <BR>> means that the client can make call each other.<BR>> The openser server that I build is support TLS (in openser.cfg, I enable <BR>> the TLS support).<BR>> But, I need help for testing my TLS in voip communication.<BR>> I have type command : # openser -V , and I can see that the TLS is used.<BR>> <BR>> But,How can I test the openser that supported TLS? because in my <BR>> mind, for testing the TLS, I must have a software that supported TLS. <BR><BR>xlite supports TLS, also minisip<BR><BR>you can also use 2 openser's to talk TLS between the 2 openser's<BR><BR>> So, if the client can communicate each other by using the software phone <BR>> that supported TLS, it means that the TLS have run successfully (because <BR>> TLS use port 5061 ).<BR>> Is this opinion correct?<BR><BR>yes. but make sure the connection is really routed via port 5061/TLS.<BR><BR>Good tools for
debugging:<BR><BR>1. ssldump<BR>2. ngrep (check the ports which are used)<BR>3. you can configure openser TLS to use NULL cipher. This way it is TLS <BR>but not encrypted and you can use a packet sniffer to watch the signaling.<BR><BR>regards<BR>klaus<BR><BR>> <BR>> Or can anybody give a suggestion how to test my openser TLS? if I have <BR>> to use software phone that supported TLS.Please tell me..Pelase..<BR>> <BR>> Thank you very much for your help.<BR>> Thank you<BR>> <BR>> Regards,<BR>> <BR>> <BR>> Ferianto<BR>> <BR>> <BR>> ------------------------------------------------------------------------<BR>> Stay in the know. Pulse on the new Yahoo.com. Check it out. <BR>> <HTTP: evt="42974/*http://www.yahoo.com/preview" us.rd.yahoo.com><BR>> <BR>> <BR>> ------------------------------------------------------------------------<BR>> <BR>> _______________________________________________<BR>> Serusers mailing
list<BR>> Serusers@lists.iptel.org<BR>> http://lists.iptel.org/mailman/listinfo/serusers<BR><BR></BLOCKQUOTE><BR><p> 
<hr size=1>Get your email and more, right on the <a href="http://us.rd.yahoo.com/evt=42973/*http://www.yahoo.com/preview"> new Yahoo.com</a>