debug=3 fork=yes log_stderror=no listen=192.168.0.1 #INSERT YOUR SIP SERVER IP HERE #alias="domain.net" #INSERT YOUR ALIAS DOMAIN HERE port=5060 children=7 dns=no rev_dns=no fifo="/tmp/ser_fifo" fifo_mode=766 fifo_db_url="mysql://ser:heslo@localhost/ser" sip_warning=yes server_signature=no #---------------- Modules ------------------- loadmodule "/usr/local/lib/ser/modules/mysql.so" loadmodule "/usr/local/lib/ser/modules/sl.so" loadmodule "/usr/local/lib/ser/modules/tm.so" loadmodule "/usr/local/lib/ser/modules/rr.so" loadmodule "/usr/local/lib/ser/modules/maxfwd.so" loadmodule "/usr/local/lib/ser/modules/usrloc.so" loadmodule "/usr/local/lib/ser/modules/registrar.so" loadmodule "/usr/local/lib/ser/modules/auth.so" loadmodule "/usr/local/lib/ser/modules/auth_db.so" loadmodule "/usr/local/lib/ser/modules/uri.so" loadmodule "/usr/local/lib/ser/modules/uri_db.so" loadmodule "/usr/local/lib/ser/modules/domain.so" loadmodule "/usr/local/lib/ser/modules/mediaproxy.so" loadmodule "/usr/local/lib/ser/modules/nathelper.so" loadmodule "/usr/local/lib/ser/modules/textops.so" loadmodule "/usr/local/lib/ser/modules/xlog.so" #----------------- Parameters ------------------- modparam("auth_db|domain|uri_db|usrloc", "db_url", "mysql://ser:heslo@localhost/ser") modparam("auth_db", "calculate_ha1", 1) modparam("auth_db", "password_column", "password") modparam("nathelper", "rtpproxy_disable", 1) modparam("nathelper", "natping_interval", 0) modparam("mediaproxy", "natping_interval", 30) modparam("mediaproxy", "mediaproxy_socket", "/var/run/mediaproxy.sock") modparam("mediaproxy", "sip_asymmetrics", "/usr/local/etc/ser/sip-clients") modparam("mediaproxy", "rtp_asymmetrics", "/usr/local/etc/ser/rtp-clients") modparam("usrloc", "db_mode", 2) modparam("registrar", "nat_flag", 6) modparam("rr", "enable_full_lr", 1) #------------- Main Routing Block ---------------- route { # ----------------------------------------------------------------- # Sanity Check Section # ----------------------------------------------------------------- if (!mf_process_maxfwd_header("10")) { xlog("L_WARN", "[%Tf]: loop detected; method=%rm\n"); sl_send_reply("483", "Too Many Hops"); break; }; if (msg:len > max_len) { xlog("L_WARN", "[%Tf]: message too big; length=%ml; from=%fu; IP=%is\n"); sl_send_reply("513", "Message Overflow"); break; }; # ----------------------------------------------------------------- # Record Route Section # ----------------------------------------------------------------- if(method=="INVITE" && client_nat_test("3")) { xlog("L_WARN", "[%Tf]: NAT detected; method=%rm; from=%fu\n"); record_route_preset("192.168.0.1:5060;nat=yes"); #INSERT YOUR SIP SERVER IP HERE } else if(method!="REGISTER") { record_route(); }; # ----------------------------------------------------------------- # Call Teardown Section # ----------------------------------------------------------------- if(method=="BYE" || method=="CANCEL") { end_media_session(); }; # ----------------------------------------------------------------- # Loose Route Section # ----------------------------------------------------------------- if (loose_route()) { if(has_totag() && (method=="INVITE" || method=="ACK") ) { if(client_nat_test("3") || search("^Route:.*;nat=yes") ) { setflag(6); use_media_proxy(); }; }; route(1); break; }; # ----------------------------------------------------------------- # Call Type Processing Section # ----------------------------------------------------------------- if (uri!=myself) { route(4); route(1); break; }; if (method=="INVITE") { route(3); break; } else if (method=="REGISTER") { route(2); break; } else if(method=="CANCEL") { route(1); break; }; lookup("aliases"); if (uri!=myself) { route(4); route(1); break; }; if (!lookup("location")) { sl_send_reply("404", "User Not Found"); break; }; route(1); } route[1] { # ----------------------------------------------------------------- # Default Message Handler # ----------------------------------------------------------------- t_on_reply("1"); if (!t_relay()) { if(method=="INVITE" || method=="ACK") { end_media_session(); }; sl_reply_error(); }; } route[2] { # ----------------------------------------------- # REGISTER Message Handler # ----------------------------------------------- sl_send_reply("100", "Trying"); if(!search("^Contact:[ ]*\*") && client_nat_test("7") ) { setflag(6); fix_nated_register(); force_rport(); }; if (!www_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE www_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE break; } if (!check_to()) { xlog("L_WARN", "[%Tf]: possible uri spoofing attempt!; method=%rm; IP=%is; from=%fu; to=%tu\n"); sl_send_reply("403", "Forbidden"); break; }; consume_credentials(); if (!save("location")) { sl_reply_error(); }; } route[3] { # ----------------------------------------------------------------- # INVITE Message Handler # ----------------------------------------------------------------- if (!proxy_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE proxy_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE break; } else if (!check_from()) { xlog("L_WARN", "[%Tf]: possible uri spoofing attempt!; method=%rm; IP=%is; from=%fu; to=%tu\n"); sl_send_reply("403", "Forbidden. Unregistered users not allowed!"); break; }; consume_credentials(); if(client_nat_test("3") ) { setflag(7); force_rport(); fix_nated_contact(); }; lookup("aliases"); if (uri!=myself) { route(4); route(1); break; }; if (!lookup("location")) { sl_send_reply("404", "User Not Found"); break; }; route(4); route(1); } route[4] { # ----------------------------------------------------------------- # NAT Traversal Handler # ----------------------------------------------------------------- if(isflagset(6) || isflagset(7) ) { use_media_proxy(); }; } onreply_route[1] { if((isflagset(6) || isflagset(7)) && (status=~"(180)|(183)|2[0-9][0-9]")) { if( !search("^Content-Length:[ ]*0") ) { use_media_proxy(); }; }; if( client_nat_test("1") ) { fix_nated_contact(); }; }