I have three sip proxies
configured with OpenSER and MediaProxy
for NAT traversal support, I'm going to call them Proxy A, B and C. These proxies
work together as a farm; the Proxies A and C points to the MySql database
installed in Proxy B. Proxy B serves as location server an also as proxy.
Everything works fine, the REGISTER requests are validated against the database
(installed in Proxy B) by any proxy without any problem. Also, the location
records are inserted without any problem. However, I noticed when Proxies A or
C receive an INVITE request, they respond 404 - User Not Found. I made a lot of
debug, captures and anything else, and I found the lookup function is only
getting locations for user agents registered by the Proxy that is making the
query; in other words, if the user X registers through Proxy A, then an INVITE
request received by Proxy A to user X is routed successfully.
I don’t know if I’m
missing something. I’m using db_mode 1 for usrloc to store locations directly in the database. Below
is one of my configuration scripts, the three are practically the same, they are
different on the listen IP addresses and in the record route for nated clients.
I’ll appreciate any help.
Thank you
# ----------- global configuration
parameters ------------------------
debug=9
# debug level (cmd line: -dddddddddd)
fork=yes
log_stderror=no # (cmd
line: -E)
# Uncomment these lines to enter
debugging mode
#fork=no
#log_stderror=yes
#
check_via=no #
(cmd. line: -v)
dns=no
# (cmd. line: -r)
rev_dns=no # (cmd. line: -R)
listen=AAA.BBB.CCC.DDD
port=5060
children=4
fifo="/tmp/openser_fifo"
fifo_db_url="mysql://openser:password@dbs.sip.mydomain.com/openser"
#Aliases
alias="sip.mydomain.com"
#
# uncomment the following lines for TLS
support
#disable_tls =
0
#listen = tls:your_IP:5061
#tls_verify =
1
#tls_require_certificate
= 0
#tls_method =
TLSv1
#tls_certificate
= "/usr/local/etc/openser/tls/user/user-cert.pem"
#tls_private_key
= "/usr/local/etc/openser/tls/user/user-privkey.pem"
#tls_ca_list =
"/usr/local/etc/openser/tls/user/user-calist.pem"
# ------------------ module loading
----------------------------------
loadmodule "/usr/local/lib/openser/modules/mysql.so"
loadmodule "/usr/local/lib/openser/modules/sl.so"
loadmodule "/usr/local/lib/openser/modules/tm.so"
loadmodule "/usr/local/lib/openser/modules/rr.so"
loadmodule "/usr/local/lib/openser/modules/maxfwd.so"
loadmodule "/usr/local/lib/openser/modules/usrloc.so"
loadmodule "/usr/local/lib/openser/modules/registrar.so"
loadmodule "/usr/local/lib/openser/modules/auth.so"
loadmodule "/usr/local/lib/openser/modules/auth_db.so"
loadmodule "/usr/local/lib/openser/modules/alias_db.so"
loadmodule "/usr/local/lib/openser/modules/uri.so"
loadmodule "/usr/local/lib/openser/modules/uri_db.so"
loadmodule "/usr/local/lib/openser/modules/domain.so"
loadmodule "/usr/local/lib/openser/modules/mediaproxy.so"
loadmodule "/usr/local/lib/openser/modules/nathelper.so"
loadmodule "/usr/local/lib/openser/modules/textops.so"
loadmodule "/usr/local/lib/openser/modules/xlog.so"
# ----------------- setting
module-specific parameters ---------------
modparam("usrloc|auth_db|domain|uri_db|alias_db",
"db_url", "mysql://openser:password@dbs.sip.mydomain.com/openser")
modparam("usrloc", "use_domain",
0)
modparam("usrloc", "db_mode",
1)
modparam("usrloc", "timer_interval",
60)
modparam("registrar", "use_domain",
0)
modparam("registrar", "nat_flag",
6)
modparam("registrar", "min_expires",
10)
modparam("registrar", "max_expires",
80)
modparam("registrar", "default_expires",
30)
modparam("rr", "enable_full_lr",
1)
modparam("auth_db",
"calculate_ha1", yes)
modparam("auth_db", "password_column",
"password")
modparam("nathelper", "rtpproxy_disable", 1)
modparam("nathelper", "natping_interval", 0)
modparam("mediaproxy","natping_interval",
30)
#modparam("mediaproxy","mediaproxy_socket",
"/var/run/mediaproxy.sock")
modparam("mediaproxy","mediaproxy_socket",
"/var/run/proxydispatcher.sock")
modparam("mediaproxy","sip_asymmetrics","/usr/local/etc/openser/sip-clients")
modparam("mediaproxy","rtp_asymmetrics","/usr/local/etc/openser/rtp-clients")
# ------------------------- request routing logic
-------------------
# main routing
logic
route {
#
-----------------------------------------------------------------
#
Sanity Check Section
#
-----------------------------------------------------------------
if (!mf_process_maxfwd_header("10"))
{
sl_send_reply("483",
"Too Many Hops");
exit;
};
if (msg:len > max_len) {
sl_send_reply("513",
"Message Overflow");
exit;
};
#
-----------------------------------------------------------------
#
#
-----------------------------------------------------------------
if (method=="INVITE" && client_nat_test("3")) {
record_route_preset("AAA.BBB.CCC.DDD:5060;nat=yes");
}
else if (method!="REGISTER") {
record_route();
};
#
-----------------------------------------------------------------
#
Call Tear Down Section
#
-----------------------------------------------------------------
if (method=="BYE" || method=="CANCEL") {
end_media_session();
};
#
-----------------------------------------------------------------
#
Loose Route Section
#
-----------------------------------------------------------------
if (loose_route()) {
if (has_totag() &&
(method=="INVITE" || method=="ACK")) {
if (client_nat_test("3")
|| search("^Route:.*;nat=yes")) {
setflag(6);
use_media_proxy();
};
};
route(1);
exit;
};
#
-----------------------------------------------------------------
#
Call Type Processing Section
#
-----------------------------------------------------------------
if (uri!=myself) {
route(4);
route(1);
exit;
};
if (method=="CANCEL") {
route(1);
exit;
}
else if (method=="INVITE") {
route(3);
exit;
}
else if (method=="REGISTER") {
route(2);
exit;
}
else if (method=="ACK") {
exit;
};
if (uri!=myself) {
route(4);
route(1);
exit;
};
if (!lookup("location")) {
sl_send_reply("404",
"User Not Found");
exit;
};
route(1);
}
route[1] {
#
-----------------------------------------------------------------
#
Default Message Handler
#
-----------------------------------------------------------------
t_on_reply("1");
if (!t_relay()) {
if (method=="INVITE" || method=="ACK") {
end_media_session();
};
sl_reply_error();
};
}
route[2] {
#
-----------------------------------------------------------------
#
REGISTER Message Handler
#
----------------------------------------------------------------
xlog("L_INFO",
"REGISTER - entering section\n");
#if
(!search("^Contact:[ ]*\*") && client_nat_test("7")) {
if (client_nat_test("7"))
{
setflag(6);
fix_nated_register();
force_rport();
xlog("L_INFO",
"REGISTER - nated client detected and fixed ($tu)\n");
};
if (registered("location")) {
xlog("L_INFO",
"REGISTER - user already registered ($tu)\n");
};
if (!www_authorize("sip.mydomain.com","subscriber")) {
www_challenge("sip.mydomain.com","0");
exit;
};
if (!check_to()) {
xlog("L_WARN",
"REGISTER - unauthorized client ($tu)\n");
sl_send_reply("401",
"Unauthorized");
exit;
};
consume_credentials();
xlog("L_INFO",
"REGISTER - client authorized ($tu)\n");
if (!save("location")) {
xlog("L_WARN",
"REGISTER - client location could not be saved ($tu)\n");
sl_reply_error();
};
xlog("L_INFO",
"REGISTER - client location saved ($tu)\n");
}
route[3] {
#
-----------------------------------------------------------------
#
INVITE Message Handler
#
-----------------------------------------------------------------
xlog("L_INFO",
"INVITE - entering section\n");
#if
(client_nat_test("3")) {
if (client_nat_test("7"))
{
setflag(7);
fix_nated_contact();
force_rport();
};
if (!proxy_authorize("sip.mydomain.com","subscriber")) {
proxy_challenge("sip.mydomain.com","0");
exit;
}
else if (!check_from()) {
sl_send_reply("403",
"Use From=ID");
exit;
};
consume_credentials();
xlog("L_INFO",
"INVITE - proxy authorized\n");
if (uri!=myself) {
xlog("L_INFO",
"INVITE - <$ru> uri
is not from here, routing out\n");
route(4);
route(1);
exit;
};
xlog("L_INFO",
"INVITE - before aliases lookup <$ru>\n");
alias_db_lookup("dbaliases");
xlog("L_INFO",
"INVITE - after aliases lookup <$ru>\n");
if (registered("location")) {
xlog("L_INFO",
"INVITE - the user is already registered <$ru>\n");
};
if (!lookup("location")) {
xlog("L_WARN",
"INVITE - not located <$ru>\n");
sl_send_reply("404",
"User Not Found");
exit;
};
route(4);
route(1);
}
route[4] {
#
-----------------------------------------------------------------
#
NAT Traversal Section
#
-----------------------------------------------------------------
if (isflagset(6) || isflagset(7)) {
xlog("L_INFO",
"NAT Traversal - using media proxy\n");
use_media_proxy();
};
}
onreply_route[1] {
if ((isflagset(6) || isflagset(7)) &&
(status=~"(180)|(183)|2[0-9][0-9]")) {
if (!search("^Content-Length:[ ]*0")) {
use_media_proxy();
};
};
if (client_nat_test("1"))
{
fix_nated_contact();
};
}