Hi,

I'm working on a custom IMS deployment using the pcscf module in Kamailio. For our setup, we do not want Kamailio to handle IPsec or generate Security-Server headers in 401/407 responses.

Is there a clean way to disable IPsec functionality entirely in the pcscf module?

Specifically, I would like to:

Prevent the module from requiring IPsec setup during UE registration

Avoid any modification of SIP messages related to IPsec (e.g., removing Security-Verify, Security-Client, or Security-Server headers)

Use only TLS or UDP without IPsec involvement

Has anyone achieved this via configuration or by disabling specific features?

Any guidance or examples would be greatly appreciated.