/* digging through the archives to make sure I haven't missed anything
while I was off-line last weeks ...
*/
I actually think that is a backwards compatibility issue in SIP.
Loose-routing works correctly if sender knows whether the next-hop
is loose or strict router. That is a correct assumption as long as
the routing information collected automatically in record-route
tells you that. If you use pre-configured Route along with an
outbound proxy, you configure this strict/loose on your own and
you need to get it right. Hence, when you configure loose routing
for use with a strict outbound router, things will fail.
Anyway, with lr support in next ser release, it should not matter
any more. We've had the same issue with kphone previouly, it works
since an option has been introduce to enforce use of strict routing.
see http://www.ietf.org/mail-archive/working-groups/sipping/current/msg03451.ht…
-Jiri
At 11:18 AM 2/5/2003, Klaus Darilion wrote:
>Hello!
>
>I've installed ser (sip:obelix.ict.tuwien.ac.at) und want'ed to use it
>with linphone, so I configured linphone to use ser as outbound proxy and
>registrar. The registration works fine but not the INVITEs. ser answers
>to an INVITE from linphone with a 404 Not Found and I found out that the
>problem is the "Route" header in the INVITE from linphone.
>
>Route: <sip:obelix.ict.tuwien.ac.at;lr>
>
>When I remove the header from the invite and send it manually (sipsak)
>the ser proxy accepts the invite and forwards it. I think ser reacts
>wrong because if an RFC3261 proxy gets an request with a route header
>which points to itself it should remove the header and forward the
>request.
>
>Than I tried the same with an different proxy in the route header:
>
>Route: <sip:iptel.org;lr>
>
>Now, my ser proxy (sip:obelix.ict.tuwien.ac.at) accepts the request and
>forwards it to iptel.org, but it rewrites the invite to:
>INVITE sip:iptel.org;lr SIP/2.0
>
>Thats what an RFC2543 proxy would do, but not an RFC3261 proxy, which
>only is allowed to do that if the route header has no "lr" parameter or
>if he is responsible for the domain in the request URI. If there is an
>"lr" parameter the proxy must not change the request URI.
>
>If I'm wrong please let me know.
>
>I use ser 0.8.10 with the standard config file and linphone 0.9.1 &
>0.10.0
>
>Regards,
>Klaus
>_______________________________________________
>Serusers mailing list
>serusers(a)lists.iptel.org
>http://lists.iptel.org/mailman/listinfo/serusers
--
Jiri Kuthan http://iptel.org/~jiri/
Hello,
I installed SER, I have started the services.
I haven't set up the mysql part yet, I wanted to test it working at all.
With bone phone I have tried connecting but gotten:
"java.net.BindException: Address already in use"
The SER documentation makes out that SER can be used without the mysql
parts to make calls with microsoft messenger > version 4.6 ut I've been
unable to connect with this either.
What now?
Jaime.
Folks,
sip_dictionary buindled with ser doesn't include Vendor-Specific
attribute. Attached patch should fix it, it would be nice to have it
included into the next release.
Thanks!
-Maxim
$FreeBSD$
--- etc/sip_dictionary 2003/01/27 14:13:18 1.1
+++ etc/sip_dictionary 2003/01/27 14:13:39
@@ -48,6 +48,7 @@
ATTRIBUTE Framed-Route 22 string
ATTRIBUTE Framed-IPX-Network 23 ipaddr
ATTRIBUTE State 24 string
+ATTRIBUTE Vendor-Specific 26 string
ATTRIBUTE Session-Timeout 27 integer
ATTRIBUTE Idle-Timeout 28 integer
ATTRIBUTE Termination-Action 29 integer
Hi,
thank you for your replies.
I need be sure that user 'ivan', with password 'ivanpswd', registers himself
typing 'sip:ivan.vignola@192.168.11.237' and not typing
'silvio.berlusconi(a)192.168.11.237'.
Regards.
Ivan.
>From: Jiri Kuthan <jiri(a)iptel.org>
>To: "Ivan Vignola" <ivanvignola(a)hotmail.com>, serusers(a)lists.iptel.org
>Subject: Re: [Serusers] User permission question.
>Date: Fri, 14 Feb 2003 11:45:37 +0100
>
>I'm not sure what it means "authenticate by his uri". There are quite
>many URIs in each request, which BTW have very low security value.
>Can you give more details?
>
>Thanks,
>
>-Jiri
>
>At 10:29 AM 2/14/2003, Ivan Vignola wrote:
> >Hi,
> >
> >in my tests user can authenticate himself using user_id, password and any
>sip uri. I need user authenticating himself only by his associated uri. How
>can I do that?
> >
> >Thanks in advance.
> >
> >Ivan Vignola.
> >
> >
> >
> >
> >
> >_________________________________________________________________
> >Vinci la nuova Nissan Micra con MSN Messenger!
>http://www.msn.it/messenger/
> >
> >_______________________________________________
> >Serusers mailing list
> >serusers(a)lists.iptel.org
> >http://lists.iptel.org/mailman/listinfo/serusers
>
>--
>Jiri Kuthan http://iptel.org/~jiri/
>
>_______________________________________________
>Serusers mailing list
>serusers(a)lists.iptel.org
>http://lists.iptel.org/mailman/listinfo/serusers
_________________________________________________________________
MSN Foto: condividi, ritocca e stampa le tue foto online
http://photos.msn.it
Hi,
in my tests user can authenticate himself using user_id, password and any
sip uri. I need user authenticating himself only by his associated uri. How
can I do that?
Thanks in advance.
Ivan Vignola.
_________________________________________________________________
Vinci la nuova Nissan Micra con MSN Messenger! http://www.msn.it/messenger/
Hi Jan,
I have successfully compiled the radius modules radius_acc.so and radius_auth.so. But when I try to load the both modules ser tells me:
ERROR: bad config file (2 errors)
I use the solaris binary package from iptel and have compiled myself only the both radius modules. Is there any incompability? How can I get mor debug information?
Regards,
Yang
-----------------------------------
My config file:
debug=7 # debug level (cmd line: -dddddddddd)
fork=yes
log_stderror=no # (cmd line: -E)
check_via=no # (cmd. line: -v)
dns=no # (cmd. line: -r)
rev_dns=no # (cmd. line: -R)
port=5060
children=4
fifo="/tmp/ser_fifo"
# ------------------ module loading ----------------------------------
# Uncomment this if you want to use SQL database
#loadmodule "/usr/local/lib/ser/modules/mysql.so"
loadmodule "/usr/local/lib/ser/modules/sl.so"
loadmodule "/usr/local/lib/ser/modules/tm.so"
loadmodule "/usr/local/lib/ser/modules/rr.so"
loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
loadmodule "/usr/local/lib/ser/modules/usrloc.so"
loadmodule "/usr/local/lib/ser/modules/registrar.so"
loadmodule "/usr/local/lib/ser/modules/radius_acc.so"
loadmodule "/usr/local/lib/ser/modules/radius_auth.so"
# Uncomment this if you want digest authentication
# mysql.so must be loaded !
#loadmodule "/usr/local/lib/ser/modules/auth.so"
# ----------------- setting module-specific parameters ---------------
# -- usrloc params --
modparam("usrloc", "db_mode", 0)
# Uncomment this if you want to use SQL database
# for persistent storage and comment the previous line
#modparam("usrloc", "db_mode", 2)
# -- auth params --
# Uncomment if you are using auth module
#
#modparam("auth", "secret", "alsdkhglaksdhfkloiwr")
#modparam("auth", "calculate_ha1", yes)
#
# If you set "calculate_ha1" parameter to yes (which true in this config),
# uncomment also the following parameter)
#
#modparam("auth", "password_column", "password")
# ------------------------- request routing logic -------------------
# main routing logic
alias="pix-demo.fhg.de"
route{
# initial sanity checks -- messages with
# max_forwars==0, or excessively long requests
if (!mf_process_maxfwd_header("10")) {
sl_send_reply("483","Too Many Hops");
break;
};
if (len_gt( max_len )) {
sl_send_reply("513", "Message too big");
break;
};
# Do strict routing if pre-loaded route headers present
rewriteFromRoute();
# if the request is for other domain use UsrLoc
# (in case, it does not work, use the following command
# with proper names and addresses in it)
if (uri==myself) {
if (method=="REGISTER") {
# Uncomment this if you want to use digest authentication
# if (!www_authorize("iptel.org", "subscriber")) {
# www_challenge("iptel.org", "0");
# break;
# };
save("location");
break;
};
# native SIP destinations are handled using our USRLOC DB
if (!lookup("location")) {
sl_send_reply("404", "Not Found");
break;
};
};
# forward to current uri now
if (!t_relay()) {
sl_reply_error();
};
}
Hi,
How could I integrate SIP and H323 together?
I would like to h323 endpoint call sip endpoint.
Is it possible using SER?
My config is Cisco AS5300, gnu gatekeeper and SER.
Hi,
I' ve installed SERWEB.....But when I try to register or login...nothing
happens... the page is reload. The Apache server is working. Anyone had
this same problem?
Thanks,
Adriana Simizo
Telefonica Brasil - Telecomunicações de São Paulo S. A.
Hi,
and in file digest.c of the module radius_auth:
warning:
digest.c: In function `radius_authorize':
digest.c:79: `PW_SIP_NONCE' undeclared (first use in this function)
digest.c:79: (Each undeclared identifier is reported only once
digest.c:79: for each function it appears in.)
digest.c:83: `PW_SIP_NONCE_COUNT' undeclared (first use in this function)
Changed
from PW_SIP_NONCE to PW_SIP_USER_NONCE
and
from PW_SIP_NONCE_COUNT to PW_SIP_USER_NONCE_COUNT
which are defined in your new header file "radiusclient.h".
Hope this is ok.
Regards
Yang
Hi,
While trying to compile the module radius_acc I get some warnings as follows:
acc.c: In function `radius_log_reply':
acc.c:142: warning: passing arg 1 of `parse_from_header' from incompatible pointer type
acc.c: In function `radius_log_ack':
acc.c:426: warning: passing arg 1 of `parse_from_header' from incompatible pointer type
acc.c: In function `rad_acc_request':
acc.c:708: warning: passing arg 1 of `parse_from_header' from incompatible pointer type
So I looked into the file acc.c and found such statements like
if ( parse_from_header( msg )==-1 )
Because the function parse_from_header needs a parameter of type hdr_field, I changed the statements above to
if ( parse_from_header( msg->headers )==-1 )
after this the warnings don't appear any longer.
Is this change ok?
Best Regards
Yang
