Hi,
I'm a newbie in OpenSER usage and in SIP in general so perhaps it's very simple questions.
I understand that TLS can be activated/disactivated from the configuration file but can not be used only according SIP number for example or call streams(internet), that's right ?
What about SRTP ? In order to have SRTP working, I think I "just" need device phone/softphone with this feature. It's not dependant of the OpenSER configuration, is it ? Is it possible to force the use of SRTP when it's possible ? For this, perhaps, I need to configure "mediaproxy" or "rtpproxy" module or something else ( mediaproxy daemon for example) ?
Thanks, Christophe.
SRTP is a client feature. It is indpendent of the SIP proxy. But be aware how the key for media encryption is transported. If it is available in the SDP in plaintext (like SNOM phones) you should use TLS otherwise the everbody can decrypt it who sniffed the INVITE.
regards klaus
Christophe Irles wrote:
Hi,
I'm a newbie in OpenSER usage and in SIP in general so perhaps it's very simple questions.
I understand that TLS can be activated/disactivated from the configuration file but can not be used only according SIP number for example or call streams(internet), that's right ?
What about SRTP ? In order to have SRTP working, I think I "just" need device phone/softphone with this feature. It's not dependant of the OpenSER configuration, is it ? Is it possible to force the use of SRTP when it's possible ? For this, perhaps, I need to configure "mediaproxy" or "rtpproxy" module or something else ( mediaproxy daemon for example) ?
Thanks, Christophe.
Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users
-
Christophe Irles -
Klaus Darilion