[sr-dev] Re: [kamailio/kamailio] [WIP] ims_registrar_pcscf,ims_qos: added a parameter for trusting the bottom Via header on requests (PR #3891)

25 Jun 2024


      @vingarzan commented on this pull request.
...
	&& (ignore_contact_rxport_check

-					|| (c->received_port == _m->rcv.src_port)
With `ignore_contact_rxport_check=1`  the protocol (not port! :upside_down_face:) hit me hard today, when REGISTER happened over TCP and then an MO MESSAGE kept being rejected because ... UDP.
I added a parameter `ignore_contact_rxproto_check` with default `1` (so changing behavior!). My opinion is that in IMS the IPsec SA is negotiated for all transport protocols (so in practice UDP and TCP), hence if a UE managed to correctly encrypt whatever UDP/TCP packet correctly and send it to us on the correct Security-Association flows, we should allow it.
-- 
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/pull/3891#discussion_r1652705551
You are receiving this because you are subscribed to this thread.

Message ID: kamailio/kamailio/pull/3891/review/2138502498@github.com

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[sr-dev] Re: [kamailio/kamailio] [WIP] ims_registrar_pcscf,ims_qos: added a parameter for trusting the bottom Via header on requests (PR #3891)