Thanks Daniel
but I have some problems...
a) my SIP gateway doesn't send the certificate when it isn't demanded...
b) I was reading about TLS specific config file (tls.cfg), but my requirements doesn't allow to configure differents TLS ports.
Do you have other idea?
Best Regards
2012/2/17 Daniel Pocock daniel@pocock.com.au
On 17/02/12 19:01, Bruno Bresciani wrote:
Hi All,
Does it possible on tls module require certificates only some hosts?
Yes, you have at least two options:
a) just set the require_certificate 0 option - make sure your client still sends it's cert even when it is not demanded - and in your kamailio.cfg, your route logic will need to check whether a certificate was used by the client
b) looking in tls.cfg, it appears you can set up different ports with different TLS policies, so the clients that must send a cert could be connecting to a port with a stricter configuration
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users