Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
Hello,
the version is too old to remember its tls implementation, which was rather rigid. For clarification, do you mean that tls_crl is not available or if set, it doesn't work?
Cheers, Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
I mean tls_crl is not available. If i set it, kamailio says: bad config file.
Hello,
the version is too old to remember its tls implementation, which was rather rigid. For clarification, do you mean that tls_crl is not available or if set, it doesn't work?
Cheers, Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
I mean tls_crl is not available. If i set it, kamailio says: bad config file.
Hello,
the version is too old to remember its tls implementation, which was rather rigid. For clarification, do you mean that tls_crl is not available or if set, it doesn't work?
Cheers, Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
Then likely the feature was not implemented in that version. Starting with v3.0, tls was completely refactored, becoming a module. You would have to upgrade to newer version in order to get this feature.
Cheers, Daniel
On 30/10/15 08:08, Evgeniy Ivanov wrote:
I mean tls_crl is not available. If i set it, kamailio says: bad config file.
Hello,
the version is too old to remember its tls implementation, which was rather rigid. For clarification, do you mean that tls_crl is not available or if set, it doesn't work?
Cheers, Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
list
sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
Unfortunately, I can't to upgrade to new version. Can i compile and use module from 3.0 in 1.5 version ?
Then likely the feature was not implemented in that version. Starting with v3.0, tls was completely refactored, becoming a module. You would have to upgrade to newer version in order to get this feature.
Cheers, Daniel
On 30/10/15 08:08, Evgeniy Ivanov wrote:
I mean tls_crl is not available. If i set it, kamailio says: bad config file.
Hello,
the version is too old to remember its tls implementation, which was rather rigid. For clarification, do you mean that tls_crl is not available or if set, it doesn't work?
Cheers, Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
list
sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
Hello,
no, 3.0+ is incompatible with 1.x.
If upgrade is not an option, either you have to write C code or implement it via some external script (e.g., using exec module).
Cheers, Daniel
On 30/10/15 11:37, Evgeniy Ivanov wrote:
Unfortunately, I can't to upgrade to new version. Can i compile and use module from 3.0 in 1.5 version ?
Then likely the feature was not implemented in that version. Starting with v3.0, tls was completely refactored, becoming a module. You would have to upgrade to newer version in order to get this feature.
Cheers, Daniel
On 30/10/15 08:08, Evgeniy Ivanov wrote:
I mean tls_crl is not available. If i set it, kamailio says: bad config file.
Hello,
the version is too old to remember its tls implementation, which was rather rigid. For clarification, do you mean that tls_crl is not available or if set, it doesn't work?
Cheers, Daniel
On 29/10/15 15:08, Evgeniy Ivanov wrote:
Hello!
I use kamailio 1.5.4-tls (i386/linux).
I configured the tls options: disable_tls = 0 listen=tls:192.168.50.60:5061 tls_certificate="/etc/kamailio/tls/crt.pem" tls_private_key="/etc/kamailio/tls/key.pem" tls_ca_list="/etc/kamailio/tls/ca.pem" tls_verify_client=on tls_require_client_certificate=on
I need to check certificate revocation, but the option tls_crl does not work. Which option uses for check certificate revocation in kamailio 1.5.x ?
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
list
sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing
list
sr-users at lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
-
Daniel-Constantin Mierla -
Evgeniy Ivanov -
Евгений Иванов