ser at run time seeks “libmysqlclient.so.10” and fails to find it
however “libmysqlclient.so.12” is present (but not accepted)
Can anyone tell me the difference please?
Is there a “simple” solution?
(Load is pre compiled tar from the ...14 folder onto a mandrake 10.0)
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.788 / Virus Database: 533 - Release Date: 01/11/2004
Hi,
I have downloaded and installed the fcp server. Is FCP server the same as STUN server. Moreever, I don't know how to use it with SER server. Can someone tells me how to configure it?
Thank you.
Thomas
On Dec 08, 2004 at 00:18, Raymond Chen <rchen(a)cityabove.net> wrote:
> Dear all,
>
>
>
> Does anyone encountered the segment fault problem when compile and run CVS
> head in Fedora core 3? There are a long list of qm_malloc and qm_free
> warning during compile and segment fault when start.
You might have some parts of ser compiled with fm_malloc and others
with qm_malloc.
Run make proper; make all and see if you still have problems.
If you do please send the make output (the warnings, if everything goes
ok you shouldn't get any) and a backtrace (gdb ser core and then bt).
Andrei
Hi,
My SER server crashes when I am testing presence support using Windows
messenger. I know from seruser mailing list that the messenger is using
non-standard conformant messages so the presence may not work correctly.
But it is still surprising that SER actually crashes.
In order to obtain detailed debugging info, I enabled logging in the
ser.cfg as follows: (Please see the entire ser.cfg attached at the end of
this message)
debug=9 # debug level (cmd line: -dddddddddd)
fork=yes
log_stderror=no # (cmd line: -E)
However, no detailed logging is showing up in syslog. All I get is as
follows (See part 1 of attachment). Can anyone shed some light on why the
logging is not working? I tried different combinations of debug level,
fork, and log_stderror, but it is not working.
Any help is really appreciated.
Thanks,
Haipeng
===================Part 1: the log I have
got==============================================================
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29332]: mod_init(): Database
connection opened successfuly
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29332]: INFO: udp_init:
SO_RCVBUF is initially 65535
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29332]: INFO: udp_init:
SO_RCVBUF is finally 131070
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29332]: INFO: udp_init:
SO_RCVBUF is initially 65535
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29332]: INFO: udp_init:
SO_RCVBUF is finally 131070
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29367]: INFO: fifo process
starting: 29367
Dec 7 11:20:14 std-sip2 /usr/local/sbin/ser[29367]: SER: open_uac_fifo:
fifo server up at /tmp/ser_fifo...
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29332]: child process 29351
exited by a signal 11
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29332]: core was not generated
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29332]: INFO: terminating due
to SIGCHLD
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29335]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29336]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29337]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29338]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29355]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29357]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29367]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29387]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29348]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29381]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29383]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29343]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29345]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29377]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29379]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29341]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29342]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29373]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29375]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29339]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29340]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29369]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29371]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29353]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29347]: INFO: signal 15 received
Dec 7 11:26:24 std-sip2 /usr/local/sbin/ser[29385]: INFO: signal 15 received
===================Part 2: my
ser.cfg==============================================
# ----------- global configuration parameters ------------------------
debug=9 # debug level (cmd line: -dddddddddd)
fork=yes
log_stderror=no # (cmd line: -E)
check_via=no # (cmd. line: -v)
dns=no # (cmd. line: -r)
rev_dns=no # (cmd. line: -R)
port=5060
#children=4
fifo="/tmp/ser_fifo"
loadmodule "/usr/local/lib/ser/modules/sl.so"
loadmodule "/usr/local/lib/ser/modules/tm.so"
loadmodule "/usr/local/lib/ser/modules/usrloc.so"
loadmodule "/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/pa.so"
loadmodule "/usr/local/lib/ser/modules/mysql.so"
modparam("usrloc", "db_mode", 2)
modparam("usrloc", "db_url", "sql://ser:3456@localhost/ser")
modparam("usrloc", "use_domain", 1)
modparam("registrar", "use_domain", 1)
route {
if (uri==myself) {
if (method=="SUBSCRIBE") {
if (t_newtran()) {
handle_subscription("registrar");
break;
};
};
if (method=="REGISTER") {
save("location");
break;
};
lookup("location");
};
if (!t_relay()) {
sl_reply_error();
};
}
Hi all !
I have to redirect some calls to unregistered user (private IP) behind NAT
This calls are forwarded to ext_IP:port and NAT redirect calls to this
user.
I'm not able to register this user on my server or set up external IP for
him
How can I achieve two way audio stream ?
Do I have to use mangle module or rtpproxy should be enough ?
Default configuation of ser for rtpproxy works only when this client is
registered, but I can't register him. (it doesn't matter why )
When I make a call then only one way audio stream is hearable
(from private to public) becasue public phone want get private address
unregistered client. How does fix it ??
Thanks
Andrzej
What is exactly role of ServerIron when SER does load balancing?
Are you using SER's dispatcher module?
-jiri
At 05:37 PM 12/1/2004, Michael Shuler wrote:
>We use a Foundry ServerIron XL and it seems to work fine. We do not use SER
>as a stateful proxy though. SER is basically a SIP message load balancer
>across our Asterisk boxes.
>
>----------------------------------------
>
>Michael Shuler, C.E.O.
>BitWise Communications, Inc. (CLEC) And BitWise Systems, Inc. (ISP)
>682 High Point Lane
>East Peoria, IL 61611
>Office: (217) 585-0357
>Cell: (309) 657-6365
>Fax: (309) 213-3500
>E-Mail: mike(a)bwsys.net
>Customer Service: (877) 976-0711
>
>> -----Original Message-----
>> From: serusers-bounces(a)lists.iptel.org
>> [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Matt Schulte
>> Sent: Wednesday, December 01, 2004 7:42 AM
>> To: serusers(a)lists.iptel.org
>> Subject: RE: [Serusers] Loadbalancing / high availability
>>
>>
>>
>> I'm curious what brand load balancer you would use, would it be IP
>> based. We tried out a Cisco SLB and had no luck, mainly
>> because it would
>> NAT to the servers (more trouble than it's worth?). We were
>> thinking of
>> using a heartbeat type failover, similar to what you would do
>> for MySQL:
>>
>> http://linux-ha.org/download/
>>
>> Has anyone tried this method? We're more concerned about the high
>> availability than anything.
>>
>> -----Original Message-----
>> From: E. Versaevel [mailto:erik@infopact.nl]
>> Sent: Wednesday, December 01, 2004 7:24 AM
>> To: serusers(a)lists.iptel.org
>> Subject: [Serusers] Loadbalancing / high availability
>>
>>
>> Hello,
>>
>> I was wondering if it is necessary for a SIP packet from a
>> specific call
>> to always go through the same server?
>>
>> For instance, if you have a load balancer distributing requests over a
>> few servers, it is possible that an INVITE ends up on 1
>> server while the
>> following INVITE with the credentials ends up on another,
>> would this be
>> a problem (ie, break the authorization) or should you use a SIP aware
>> loadbalancer for this (who looks at the callid for example)? Assuming
>> the ser servers are setup to use the same userdatabase (and
>> t_replicate
>> to eachother) the picture would be something like this:
>>
>> |
>> --------------
>> |loadbalancer|
>> --------------
>> |
>> |
>> --------------------
>> | | |
>> ------- ------- -------
>> | | | | | |
>> | ser1| | ser2| | ser3|
>> | | | | | |
>> ------- ------- -------
>>
>> If you setup the servers with the same IP as the load
>> balancer and stop
>> them from replying to ARP requests for that IP, replying back
>> thru a NAT
>> should not be a problem.
>>
>> Just thinking out loud, I could use SER for the load balancing and
>> t_relay the packets, however that would require some
>> tampering with the
>> VIA records (and I should use a reply to via in that case to the
>> original IP the SIP request came from, eg not the load balancer) this
>> way outgoing SIP traffic would not have to go thru the ser
>> loadbalancer
>> again to get out, hmm, it might even be possible to use a route-record
>> header to get the packets back at the correct server...
>>
>>
>> Kind regards,
>>
>> E. Versaevel
>>
>> _______________________________________________
>> Serusers mailing list
>> serusers(a)lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
>>
>> _______________________________________________
>> Serusers mailing list
>> serusers(a)lists.iptel.org
>> http://lists.iptel.org/mailman/listinfo/serusers
>>
>
>_______________________________________________
>Serusers mailing list
>serusers(a)lists.iptel.org
>http://lists.iptel.org/mailman/listinfo/serusers
--
Jiri Kuthan http://iptel.org/~jiri/
Dear all,
Does anyone encountered the segment fault problem when compile and run CVS
head in Fedora core 3? There are a long list of qm_malloc and qm_free
warning during compile and segment fault when start.
Thanks
ray
"/usr/local/lib/ser/modules/mysql.so" really exists, thats the problem i can't resolve. The file exists but i keep on receving this error message telling that there is an error at ser.cfg configuration ... I've tried to raise to level 9 debug messages, but it keeps telling me the same error ... HELPPPP !!! :o)
Begin forwarded message:
Date: Tue, 07 Dec 2004 15:02:27 +0100
From: Marian Dumitru <marian.dumitru(a)voice-sistem.ro>
To: Felipe Martins <fmartins(a)mundivox.com>
Subject: Re: [Serusers] SER MySQL Support Error !!!
Hi Felipe,
Note "mysql" module is not compiled/ installed by default. Check if
"/usr/local/lib/ser/modules/mysql.so" really exists.
To get more info about the error (when loading mysql module), increase
the debug level to 9.
Beast regards,
Marian
Felipe Martins wrote:
> Hello Everybody,
>
> I am using ser with mysql to authenticate my users, well, i'm trying to use, i'm having an erro message when I start it. What I exactly did was: start up ser (without mysql.so modulo at ser.cfg), and started mysql database with just one table ... obviously when I try to execute "# ser_mysql.sh create", this returns me the following error because I don't have the mysql.so configured in the ser.cfg
>
> "ERROR 1064 (42000) at line 7: You have an error inyour SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'BY '47serro11'' at line 1"
>
> The problem is that when I configure the mysql.so at ser.cfg with the line '"lodmodule "/usr/local/lib/ser/modules/mysql.so"' and start again the ser server, the following error appears:
>
> "ERROR: bad config file (1 errors)"
>
> Even if you could create the mysql tables with the ser_mysql.sh I wouldn't be able to run ser with the mysql support. What am i doing wrong ?
>
>
>
>
--
Voice Sistem
http://www.voice-sistem.ro
--
Felipe Martins
Linux System Administrator
Tep Solution Provider
Mundivox Communications
Rua Lauro Muller, 116/Sala 505
RJ - Brasil - 22290-906
Tel.: 55 21 3820-8839
Fax.: 55 21 3820-8844
Hi Guys:
I am testing the PSTN brake out to a SBC(Session Board Controller) with the ser.cfg below,it rewrite the uri and foward the calls to the SBC directly,but when UA makes a call to PSTN with 00 prefix,SER don't foward the "Invite" message to the SBC,only the ACK message is fowarded,and then the ACK error,but what is strange,the ring tone behind the SBC raise,in the UA(IP phone) side,it is a busy tone and 400 erro.
Please help and give me a quick reply,thanks.
ser.cfg
********************************************************
# ----------- global configuration parameters
------------------------
debug=9 # debug level (cmd line:-d)
fork=yes
log_stderror=yes # (cmd line: -E)
/* Uncomment these lines to enter debugging mode
fork=no
log_stderror=yes
*/
check_via=no # (cmd. line: -v)
dns=no # (cmd. line: -r)
rev_dns=no # (cmd. line: -R)
port=5060
children=4
fifo="/tmp/ser_fifo"
# ------------------ module loading
----------------------------------
# Uncomment this if you want to use SQL database
loadmodule "/usr/local/lib/ser/modules/mysql.so"
loadmodule "/usr/local/lib/ser/modules/exec.so"
loadmodule "/usr/local/lib/ser/modules/sl.so"
loadmodule "/usr/local/lib/ser/modules/tm.so"
loadmodule "/usr/local/lib/ser/modules/rr.so"
loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
loadmodule "/usr/local/lib/ser/modules/usrloc.so"
loadmodule "/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/textops.so"
loadmodule "/usr/local/lib/ser/modules/domain.so"
# Uncomment this if you want digest authentication
# mysql.so must be loaded !
loadmodule "/usr/local/lib/ser/modules/auth.so"
loadmodule "/usr/local/lib/ser/modules/auth_radius.so"
loadmodule "/usr/local/lib/ser/modules/acc.so"
loadmodule "/usr/local/lib/ser/modules/xlog.so"
# !! Nathelper
loadmodule "/usr/local/lib/ser/modules/nathelper.so"
# ----------------- setting module-specific parameters
---------------
# -- usrloc params --
#modparam("usrloc", "db_mode", 0)
# Uncomment this if you want to use SQL database
# for persistent storage and comment the previous line
modparam("usrloc", "db_mode", 2)
# -- auth params --
# Uncomment if you are using auth module
#
#modparam("auth_db", "calculate_ha1", yes)
#
# If you set "calculate_ha1" parameter to yes (which true in this config),
# uncomment also the following parameter)
#
#modparam("auth_db", "password_column", "password")
modparam("auth_radius","radius_config","/usr/local/etc/radiusclient/radiusclient.conf")
modparam("auth_radius","service_type",15)
modparam("acc","radius_config","/usr/local/etc/radiusclient/radiusclient.conf")
modparam("acc", "log_level", 1)
modparam("acc", "log_flag", 1)
modparam("acc", "db_flag", 1)
modparam("acc", "db_missed_flag", 2)
modparam("acc", "log_fmt", "miocfst")
modparam("acc", "failed_transactions" ,1)
modparam("acc", "radius_flag", 1)
modparam("acc", "service_type", 15)
modparam("acc", "radius_missed_flag", 3)
# -- rr params --
# add value to ;lr param to make some broken UAs happy
modparam("rr", "enable_full_lr", 1)
# !! Nathelper
modparam("registrar", "nat_flag", 6)
modparam("nathelper", "natping_interval", 30)
# Ping interval 30 s
modparam("nathelper", "ping_nated_only", 1)
# Ping only clients behind NAT
#xlog
#modparam("xlog", "buf_size", 8192)
# ------------------------- request routing logic
-------------------
# main routing logic
route{
# initial sanity checks -- messages with
# max_forwards==0, or excessively long requests
if (!mf_process_maxfwd_header("10")) {
sl_send_reply("483","Too Many Hops");
break;
};
if (msg:len >= max_len ) {
sl_send_reply("513", "Message too big");
break;
};
# !! Nathelper
# Special handling for NATed clients; first,NAT test is
# executed: it looks for via!=received and RFC1918 addresses
# in Contact (may fail if line-folding is used); also,
# the received test should, if completed,should check all
# vias for rpesence of received
if (nat_uac_test("3")) {
# Allow RR-ed requests, as these may indicate that
# a NAT-enabled proxy takes care of it; unless it is
# a REGISTER
if (method == "REGISTER" || !search("^Record-Route:")) {
log("LOG: Someone trying to register from private IP, rewriting\n");
# This will work only for user agents that support symmetric
# communication. We tested quite many of them and majority is
# smart enough to be symmetric. In some phones it takes a configuration
# option. With Cisco 7960, it is called NAT_Enable=Yes, with kphone it is
# called "symmetric media" and "symmetric signalling".
fix_nated_contact();
# Rewrite contact with source IP of signalling
if (method == "INVITE") {
fix_nated_sdp("1");
# Add direction=active to SDP
};
force_rport(); # Add rport parameter to topmost Via
setflag(6); # Mark as NATed
};
};
setflag(1);
setflag(2);
# we record-route all messages -- to make sure that
# subsequent messages will go through our proxy; that's
# particularly good if upstream and downstream entities
# use different transport protocol
if (!method=="REGISTER") record_route();
# subsequent messages withing a dialog should take the
# path determined by record-routing
if (loose_route()) {
# mark routing logic in request
append_hf("P-hint: rr-enforced\r\n");
route(1);
break;
};
if (!uri==myself) {
# mark routing logic in request
append_hf("P-hint: outbound\r\n");
route(1);
break;
};
# if the request is for other domain use UsrLoc
# (in case, it does not work, use the following command
# with proper names and addresses in it)
# if (uri==myself) {
# if (method=="REGISTER") {
#cdr tool
if ( method == "REGISTER" ||method=="INVITE" || method=="BYE" || method =="CANCEL" ) {
# save messages in mysql for CDRTool
exec_msg("/usr/local/etc/ser/sertrace.py; exit 1");
};
#end of cdrtool
# Uncomment this if you want to use digest authentication
if (uri==myself) {
if (method=="REGISTER"){
if (!radius_www_authorize("194.165.196.72")) {
www_challenge("194.165.196.72", "0");
break;
};
save("location");
break;
};
if (method=="INVITE") {
log(1, "INVITE\n");
setflag(1); /* set for accounting(the same value as in log_flag!) */
};
if (method=="ACK") {
# if (uri=~"sip:0[1-9][0-9]+@.*") {
# strip(2);
# prefix("2504");
# forward(uri:host, uri:port);
# rewritehostport("213.166.24.42:5060");
# };
log(1, "ACK\n");
setflag(1); /* set for accounting(the same value as in log_flag!) */
};
if (method=="MESSAGE") {
log(1, "MESSAGE\n");
setflag(1); /* set for accounting(the same value as in log_flag!) */
};
if ( method=="BYE" || method=="CANCEL" ) {
log (1, "BYE or CANCEL\n");
setflag(1);
};
record_route();
if (uri=~"sip:00[1-9][0-9]+@.*") {
strip(2);
prefix("2504");
# forward(uri:host, uri:port);
rewritehostport("213.166.24.42:5060");
forward(213.166.24.42, 5060);
};
lookup("aliases");
if (!uri==myself) {
append_hf("P-hint: outbound alias\r\n");
route(1);
break;
};
# native SIP destinations are handled using our USRLOC DB
if (!lookup("location")) {
sl_send_reply("404", "Not Found");
break;
};
};
append_hf("P-hint: usrloc applied\r\n");
route(1);
}
route[1]
{
# !! Nathelper
if (uri=~"[@:](192\.168\.|10\.|172\.(1[6-9]|2[0-9]|3[0-1])\.)" && !search("^Route:")){
sl_send_reply("479", "We don't forward to private IP addresses");
break;
};
# if client or server know to be behind a NAT,enable relay
if (isflagset(6)) {
force_rtp_proxy();
};
# NAT processing of replies; apply to alltransactions (for example,
# re-INVITEs from public to private UA are hard to identify as
# NATed at the moment of request processing);look at replies
t_on_reply("1");
# send it out now; use stateful forwarding as it works reliably
# even for UDP2TCP
if (!t_relay()) {
sl_reply_error();
};
}
# !! Nathelper
onreply_route[1] {
# NATed transaction ?
if (isflagset(6) && status =~ "(183)|2[0-9][0-9]")
{
fix_nated_contact();
force_rtp_proxy();
# otherwise, is it a transaction behind a NAT and we did not
# know at time of request processing ? (RFC1918 contacts)
} else if (nat_uac_test("1")) {
fix_nated_contact();
};
}
祝
商祺!
Michael Shi( Shi Jia Lu石佳璐)
Director
Podium Vision Ltd (Shanghai,China Branch)
Tel: +86 (0)21 63293472
Mobile:+86 13311713825,+86 13916750280
Fax: +86 (0)21 63296364
MSN:glacier_shi @ hotmail.com
Email: michael(a)podiumvision.co.uk
This communication contains confidential information intended solely for the use of the individual/s and/or entity or entities to whom it was intended to be addressed. If you are not the intended recipient, be aware that any disclosure, copying, distribution, or use of the contents of this transmission is prohibited. If you have received this communication in error, please contact the sender immediately, delete this communication from your system, and do not disclose its contents to any third party, or use its contents. Any opinions expressed are solely those of the author.
Hi Guys:
I am testing the PSTN brake out to a SBC(Session Board Controller) with the ser.cfg below,it rewrite the uri and foward the calls to the SBC directly,but when UA makes a call to PSTN with 00 prefix,SER don't foward the "Invite" message to the SBC,only the ACK message is fowarded,and then the ACK error,but what is strange,the ring tone behind the SBC raise,in the UA(IP phone) side,it is a busy tone and 400 erro.
Please help and give me a quick reply,thanks.
ser.cfg
********************************************************
# ----------- global configuration parameters
------------------------
debug=9 # debug level (cmd line:-d)
fork=yes
log_stderror=yes # (cmd line: -E)
/* Uncomment these lines to enter debugging mode
fork=no
log_stderror=yes
*/
check_via=no # (cmd. line: -v)
dns=no # (cmd. line: -r)
rev_dns=no # (cmd. line: -R)
port=5060
children=4
fifo="/tmp/ser_fifo"
# ------------------ module loading
----------------------------------
# Uncomment this if you want to use SQL database
loadmodule "/usr/local/lib/ser/modules/mysql.so"
loadmodule "/usr/local/lib/ser/modules/exec.so"
loadmodule "/usr/local/lib/ser/modules/sl.so"
loadmodule "/usr/local/lib/ser/modules/tm.so"
loadmodule "/usr/local/lib/ser/modules/rr.so"
loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
loadmodule "/usr/local/lib/ser/modules/usrloc.so"
loadmodule "/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/textops.so"
loadmodule "/usr/local/lib/ser/modules/domain.so"
# Uncomment this if you want digest authentication
# mysql.so must be loaded !
loadmodule "/usr/local/lib/ser/modules/auth.so"
loadmodule "/usr/local/lib/ser/modules/auth_radius.so"
loadmodule "/usr/local/lib/ser/modules/acc.so"
loadmodule "/usr/local/lib/ser/modules/xlog.so"
# !! Nathelper
loadmodule "/usr/local/lib/ser/modules/nathelper.so"
# ----------------- setting module-specific parameters
---------------
# -- usrloc params --
#modparam("usrloc", "db_mode", 0)
# Uncomment this if you want to use SQL database
# for persistent storage and comment the previous line
modparam("usrloc", "db_mode", 2)
# -- auth params --
# Uncomment if you are using auth module
#
#modparam("auth_db", "calculate_ha1", yes)
#
# If you set "calculate_ha1" parameter to yes (which true in this config),
# uncomment also the following parameter)
#
#modparam("auth_db", "password_column", "password")
modparam("auth_radius","radius_config","/usr/local/etc/radiusclient/radiusclient.conf")
modparam("auth_radius","service_type",15)
modparam("acc","radius_config","/usr/local/etc/radiusclient/radiusclient.conf")
modparam("acc", "log_level", 1)
modparam("acc", "log_flag", 1)
modparam("acc", "db_flag", 1)
modparam("acc", "db_missed_flag", 2)
modparam("acc", "log_fmt", "miocfst")
modparam("acc", "failed_transactions" ,1)
modparam("acc", "radius_flag", 1)
modparam("acc", "service_type", 15)
modparam("acc", "radius_missed_flag", 3)
# -- rr params --
# add value to ;lr param to make some broken UAs happy
modparam("rr", "enable_full_lr", 1)
# !! Nathelper
modparam("registrar", "nat_flag", 6)
modparam("nathelper", "natping_interval", 30)
# Ping interval 30 s
modparam("nathelper", "ping_nated_only", 1)
# Ping only clients behind NAT
#xlog
#modparam("xlog", "buf_size", 8192)
# ------------------------- request routing logic
-------------------
# main routing logic
route{
# initial sanity checks -- messages with
# max_forwards==0, or excessively long requests
if (!mf_process_maxfwd_header("10")) {
sl_send_reply("483","Too Many Hops");
break;
};
if (msg:len >= max_len ) {
sl_send_reply("513", "Message too big");
break;
};
# !! Nathelper
# Special handling for NATed clients; first,NAT test is
# executed: it looks for via!=received and RFC1918 addresses
# in Contact (may fail if line-folding is used); also,
# the received test should, if completed,should check all
# vias for rpesence of received
if (nat_uac_test("3")) {
# Allow RR-ed requests, as these may indicate that
# a NAT-enabled proxy takes care of it; unless it is
# a REGISTER
if (method == "REGISTER" || !search("^Record-Route:")) {
log("LOG: Someone trying to register from private IP, rewriting\n");
# This will work only for user agents that support symmetric
# communication. We tested quite many of them and majority is
# smart enough to be symmetric. In some phones it takes a configuration
# option. With Cisco 7960, it is called NAT_Enable=Yes, with kphone it is
# called "symmetric media" and "symmetric signalling".
fix_nated_contact();
# Rewrite contact with source IP of signalling
if (method == "INVITE") {
fix_nated_sdp("1");
# Add direction=active to SDP
};
force_rport(); # Add rport parameter to topmost Via
setflag(6); # Mark as NATed
};
};
setflag(1);
setflag(2);
# we record-route all messages -- to make sure that
# subsequent messages will go through our proxy; that's
# particularly good if upstream and downstream entities
# use different transport protocol
if (!method=="REGISTER") record_route();
# subsequent messages withing a dialog should take the
# path determined by record-routing
if (loose_route()) {
# mark routing logic in request
append_hf("P-hint: rr-enforced\r\n");
route(1);
break;
};
if (!uri==myself) {
# mark routing logic in request
append_hf("P-hint: outbound\r\n");
route(1);
break;
};
# if the request is for other domain use UsrLoc
# (in case, it does not work, use the following command
# with proper names and addresses in it)
# if (uri==myself) {
# if (method=="REGISTER") {
#cdr tool
if ( method == "REGISTER" ||method=="INVITE" || method=="BYE" || method =="CANCEL" ) {
# save messages in mysql for CDRTool
exec_msg("/usr/local/etc/ser/sertrace.py; exit 1");
};
#end of cdrtool
# Uncomment this if you want to use digest authentication
if (uri==myself) {
if (method=="REGISTER"){
if (!radius_www_authorize("194.165.196.72")) {
www_challenge("194.165.196.72", "0");
break;
};
save("location");
break;
};
if (method=="INVITE") {
log(1, "INVITE\n");
setflag(1); /* set for accounting(the same value as in log_flag!) */
};
if (method=="ACK") {
# if (uri=~"sip:0[1-9][0-9]+@.*") {
# strip(2);
# prefix("2504");
# forward(uri:host, uri:port);
# rewritehostport("213.166.24.42:5060");
# };
log(1, "ACK\n");
setflag(1); /* set for accounting(the same value as in log_flag!) */
};
if (method=="MESSAGE") {
log(1, "MESSAGE\n");
setflag(1); /* set for accounting(the same value as in log_flag!) */
};
if ( method=="BYE" || method=="CANCEL" ) {
log (1, "BYE or CANCEL\n");
setflag(1);
};
record_route();
if (uri=~"sip:00[1-9][0-9]+@.*") {
strip(2);
prefix("2504");
# forward(uri:host, uri:port);
rewritehostport("213.166.24.42:5060");
forward(213.166.24.42, 5060);
};
lookup("aliases");
if (!uri==myself) {
append_hf("P-hint: outbound alias\r\n");
route(1);
break;
};
# native SIP destinations are handled using our USRLOC DB
if (!lookup("location")) {
sl_send_reply("404", "Not Found");
break;
};
};
append_hf("P-hint: usrloc applied\r\n");
route(1);
}
route[1]
{
# !! Nathelper
if (uri=~"[@:](192\.168\.|10\.|172\.(1[6-9]|2[0-9]|3[0-1])\.)" && !search("^Route:")){
sl_send_reply("479", "We don't forward to private IP addresses");
break;
};
# if client or server know to be behind a NAT,enable relay
if (isflagset(6)) {
force_rtp_proxy();
};
# NAT processing of replies; apply to alltransactions (for example,
# re-INVITEs from public to private UA are hard to identify as
# NATed at the moment of request processing);look at replies
t_on_reply("1");
# send it out now; use stateful forwarding as it works reliably
# even for UDP2TCP
if (!t_relay()) {
sl_reply_error();
};
}
# !! Nathelper
onreply_route[1] {
# NATed transaction ?
if (isflagset(6) && status =~ "(183)|2[0-9][0-9]")
{
fix_nated_contact();
force_rtp_proxy();
# otherwise, is it a transaction behind a NAT and we did not
# know at time of request processing ? (RFC1918 contacts)
} else if (nat_uac_test("1")) {
fix_nated_contact();
};
}
祝
商祺!
Michael Shi( Shi Jia Lu石佳璐)
Director
Podium Vision Ltd (Shanghai,China Branch)
Tel: +86 (0)21 63293472
Mobile:+86 13311713825,+86 13916750280
Fax: +86 (0)21 63296364
MSN:glacier_shi @ hotmail.com
Email: michael(a)podiumvision.co.uk
This communication contains confidential information intended solely for the use of the individual/s and/or entity or entities to whom it was intended to be addressed. If you are not the intended recipient, be aware that any disclosure, copying, distribution, or use of the contents of this transmission is prohibited. If you have received this communication in error, please contact the sender immediately, delete this communication from your system, and do not disclose its contents to any third party, or use its contents. Any opinions expressed are solely those of the author.