Hi,
If anybody can take a look openser.cfg below. I`m working vmware (enviroments virtual)...Whenever I try a "register" a client I get 483: Too many Hops....as if he had a loop (config file) but I am unable to find the problem...
I use OpenSER 1.3-notls, client softphone: twincle or xlite...
OpenSER - 192.168.0.10 Client - 192.168.0.25
Bind9/named.conf(SRV, A): spo.voip.br
Does anyone know how to fix this ?
Any hints.....??
thx...
OpenSER File:
####### Global Parameters ######### alias="vmw02-srv.spo.voip.br" debug=6 log_stderror=no log_facility=LOG_LOCAL0 log_name="Openser" fork=yes children=8 tcp_children=4 group="openser" user="openser"
/* uncomment the next line to disable TCP (default on) */ disable_tcp=yes
/* uncomment the next line to enable the auto temporary blacklisting of not available destinations (default disabled) */ #disable_dns_blacklist=no
/* uncomment the next line to enable IPv6 lookup after IPv4 dns lookup failures (default disabled) */ #dns_try_ipv6=yes
/* uncomment the next line to disable the auto discovery of local aliases based on revers DNS on IPs (default on) */ #auto_aliases=no
/* uncomment the following lines to enable TLS support (default off) */ #disable_tls = no #listen = tls:your_IP:5061 #tls_verify_server = 1 #tls_verify_client = 1 #tls_require_client_certificate = 0 #tls_method = TLSv1 #tls_certificate = "/usr/local/etc/openser/tls/user/user-cert.pem" #tls_private_key = "/usr/local/etc/openser/tls/user/user-privkey.pem" #tls_ca_list = "/usr/local/etc/openser/tls/user/user-calist.pem"
port=5060
/* uncomment and configure the following line if you want openser to bind on a specific interface/port/proto (default bind on all available) */ listen=udp:192.168.0.10:5060
####### Modules Section ######## #set module path mpath="/usr/local/lib/openser/modules/"
/* uncomment next line for MySQL DB support */ loadmodule "mysql.so" loadmodule "sl.so" loadmodule "tm.so" loadmodule "rr.so" loadmodule "maxfwd.so" modparam("maxfwd", "max_limit", 256) loadmodule "usrloc.so" loadmodule "registrar.so" loadmodule "textops.so" loadmodule "mi_fifo.so" loadmodule "uri_db.so" loadmodule "uri.so" loadmodule "xlog.so" loadmodule "acc.so" loadmodule "avpops.so"
/* uncomment next lines for MySQL based authentication support NOTE: a DB (like mysql) module must be also loaded */ loadmodule "auth.so" loadmodule "auth_db.so"
/* uncomment next line for aliases support NOTE: a DB (like mysql) module must be also loaded */ loadmodule "alias_db.so"
/* uncomment next line for multi-domain support NOTE: a DB (like mysql) module must be also loaded NOTE: be sure and enable multi-domain support in all used modules (see "multi-module params" section ) */ loadmodule "domain.so"
/* uncomment the next two lines for presence server support NOTE: a DB (like mysql) module must be also loaded */ #loadmodule "presence.so" #loadmodule "presence_xml.so"
# ----------------- setting module-specific parameters ---------------
# ----- mi_fifo params ----- modparam("mi_fifo", "fifo_name", "/tmp/openser_fifo")
# ----- rr params ----- # add value to ;lr param to cope with most of the UAs modparam("rr", "enable_full_lr", 1)
# do not append from tag to the RR (no need for this script) #modparam("rr", "append_fromtag", 0)
# ----- rr params ----- #modparam("registrar", "method_filtering", 1)
/* uncomment the next line to disable parallel forking via location */ # modparam("registrar", "append_branches", 0)
/* uncomment the next line not to allow more than 10 contacts per AOR */ #modparam("registrar", "max_contacts", 10)
# ----- uri_db params -----
/* by default we disable the DB support in the module as we do not need it in this configuration */ modparam("uri_db", "use_uri_table", 0) modparam("uri_db", "db_url", "")
# ----- acc params -----
/* what sepcial events should be accounted ? */ modparam("acc", "early_media", 1) modparam("acc", "report_ack", 1) modparam("acc", "report_cancels", 1)
/* by default ww do not adjust the direct of the sequential requests. if you enable this parameter, be sure the enable "append_fromtag" in "rr" module */
modparam("acc", "detect_direction", 0)
/* account triggers (flags) */ modparam("acc", "failed_transaction_flag", 3) modparam("acc", "log_flag", 1) modparam("acc", "log_missed_flag", 2)
/* uncomment the following lines to enable DB accounting also */ modparam("acc", "db_flag", 1) modparam("acc", "db_missed_flag", 2)
# ----- usrloc params -----
#modparam("usrloc", "db_mode", 0) /* uncomment the following lines if you want to enable DB persistency for location entries */ modparam("usrloc", "db_mode", 2) modparam("usrloc", "db_url", "mysql://openser:openserrw@192.168.0.10 /openser") modparam("usrloc", "user_column", "username") modparam("usrloc", "domain_column", "domain") modparam("usrloc", "contact_column", "contact") modparam("usrloc", "expires_column", "expires") modparam("usrloc", "q_column", "q") modparam("usrloc", "callid_column", "callid") modparam("usrloc", "cseq_column", "cseq") modparam("usrloc", "methods_column", "methods") modparam("usrloc", "flags_column", "flags") modparam("usrloc", "user_agent_column", "user_agent") modparam("usrloc", "received_column", "received") modparam("usrloc", "socket_column", "socket") modparam("usrloc", "use_domain", 0) modparam("usrloc", "desc_time_order", 0) modparam("usrloc", "timer_interval", 60) modparam("usrloc", "matching_mode", 0) modparam("usrloc", "cseq_delay", 20)
# ----- auth_db params -----
/* uncomment the following lines if you want to enable the DB based authentication */
#modparam("auth_db", "calculate_ha1", yes) #modparam("auth_db", "password_column", "password") modparam("auth_db", "db_url", "mysql://openser:openserrw@192.168.0.10 /openser")
#modparam("auth_db", "load_credentials", "")
# ----- alias_db params -----
/* uncomment the following lines if you want to enable the DB based aliases */
modparam("alias_db", "db_url", "mysql://openser:openserrw@192.168.0.10 /openser")
# ----- domain params -----
/* uncomment the following lines to enable multi-domain detection support */
modparam("domain", "db_url", "mysql://openser:openserrw@192.168.0.10 /openser") modparam("domain", "db_mode", 1) # Use caching
# ----- multi-module params -----
/* uncomment the following line if you want to enable multi-domain support in the modules (dafault off) */ modparam("alias_db|auth_db|usrloc|uri_db", "use_domain", 1)
# ----- presence params -----
/* uncomment the following lines if you want to enable presence */ #modparam("presence|presence_xml", "db_url", # "mysql://openser:openserrw@192.168.1.3/openser_1_3") #modparam("presence_xml", "force_active", 1) #modparam("presence", "server_address", "sip:192.168.1.2:5060")
####### Routing Logic ########
# main request routing logic
route{
if (!mf_process_maxfwd_header("10")) {
sl_send_reply("483","Too Many Hops");
exit;
}
if (has_totag()) {
# sequential request withing a dialog should # take the path determined by record-routing
if (loose_route()) {
if (is_method("BYE")) {
setflag(1); # do accouting ... setflag(3); # ... even if the transaction fails
}
route(1);
} else {
sl_send_reply("404","Not here");
}
exit;
}
#initial requests # CANCEL processing
if (is_method("CANCEL")){
if (t_check_trans())
t_relay();
exit;
}
t_check_trans();
# authenticate if from local subscriber (uncomment to enable auth)
if (!(method=="REGISTER") && from_uri==myself) {
if (!proxy_authorize("", "subscriber")) {
proxy_challenge("", "0");
exit;
}
if (!check_from()) {
sl_send_reply("403","Forbidden auth ID");
exit;
}
consume_credentials();
# caller authenticated
}
# record routing if (!is_method("REGISTER|MESSAGE")) {
record_route();
# account only INVITEs
if (is_method("INVITE")) {
setflag(1); # do accouting
}
if (!uri==myself)
/* replace with following line if multi-domain support is used */
##if (!is_uri_host_local()) {
append_hf("P-hint: outbound\r\n"); # if you have some interdomain connections via TLS ##if($rd=="tls_domain1.net") { ## t_relay("tls:domain1.net"); ## exit; ##} else if($rd=="tls_domain2.net") { ## t_relay("tls:domain2.net"); ## exit; ##} route(1); }
# requests for my domain
/* uncomment this if you want to enable presence server and comment the next 'if' block NOTE: uncomment also the definition of route[2] from below */
##if( is_method("PUBLISH|SUBSCRIBE"))
## route(2);
if (is_method("PUBLISH")){
sl_send_reply("503", "Service Unavailable");
exit;
}
if (is_method("REGISTER")){ # ACRESCENTEI O IP ADDR - MRG # authenticate the REGISTER requests (uncomment to enable auth)
#if (!www_authorize("vmw02-srv", "subscriber")){
# www_challenge("vmw02-srv", "0");
# exit;
#} #
#if (!check_to()){
## sl_send_reply("403","Forbidden auth ID");
## exit;
##}
if (!save("location"))
sl_reply_error();
exit;
}
if ($rU==NULL) {
# request with no Username in RURI
sl_send_reply("484","Address Incomplete");
exit;
}
# apply DB based aliases (uncomment to enable)
alias_db_lookup("dbaliases");
if (!lookup("location")) {
switch ($retcode) {
case -1:
case -3:
t_newtran();
t_reply("404", "Not Found");
exit;
case -2:
sl_send_reply("405", "Method Not Allowed");
exit;
}
}
# when routing via usrloc, log the missed calls also
setflag(2);
route(1);
}
route[1] {
# for INVITEs enable some additional helper routes
if (is_method("INVITE")) {
t_on_branch("2");
t_on_reply("2");
t_on_failure("1");
}
if (!t_relay()) {
sl_reply_error();
};
exit;
}
# Presence route
/* uncomment the whole following route for enabling presence
NOTE: do not forget to enable the call of this route from the main
route */
##route[2]
##{
## if (!t_newtran())
## {
## sl_reply_error();
## exit;
## };
##
## if(is_method("PUBLISH"))
## {
## handle_publish();
## t_release();
## }
## else
## if( is_method("SUBSCRIBE"))
## {
## handle_subscribe();
## t_release();
## }
##
## exit;
##}
branch_route[2] {
xlog("new branch at $ru\n");
}
onreply_route[2] {
xlog("incoming reply\n");
}
failure_route[1] {
if (t_was_cancelled()) {
exit;
}
# uncomment the following lines if you want to block client
# redirect based on 3xx replies.
##if (t_check_status("3[0-9][0-9]")) {
##t_reply("404","Not found");
## exit;
##}
# uncomment the following lines if you want to redirect the failed
# calls to a different new destination
##if (t_check_status("486|408")) {
## sethostport("192.168.2.100:5060");
## append_branch();
## # do not set the missed call flag again
## t_relay();
##}
}
Ngrep -d eth1 -qt -W byline port 5060
root@vmw02-srv:~# ngrep -d eth1 -qt -W byline port 5060 interface: eth1 (192.168.0.0/255.255.255.0) filter: (ip or ip6) and ( port 5060 )
U 2008/03/20 13:57:31.763060 192.168.0.25:5060 -> 192.168.0.10:5060 REGISTER sip:spo.voip.br SIP/2.0. Via: SIP/2.0/UDP 192.168.0.25;rport;branch=z9hG4bKignjupsg. Max-Forwards: 70. To: "vmwcli03" sip:vmwcli03@spo.voip.br. From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan. Call-ID: iswtwciijecswfp@192.168.0.25. CSeq: 883 REGISTER. Contact: sip:vmwcli03@192.168.0.25;expires=3600. Allow: INVITE,ACK,BYE,CANCEL,OPTIONS,PRACK,REFER,NOTIFY,SUBSCRIBE,INFO. User-Agent: Twinkle/1.0. Content-Length: 0.
.
U 2008/03/20 13:57:32.333159 192.168.0.25:5060 -> 192.168.0.10:5060
REGISTER sip:spo.voip.br SIP/2.0. Via: SIP/2.0/UDP 192.168.0.25;rport;branch=z9hG4bKignjupsg. Max-Forwards: 70. To: "vmwcli03" sip:vmwcli03@spo.voip.br. From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan. Call-ID: iswtwciijecswfp@192.168.0.25. CSeq: 883 REGISTER. Contact: sip:vmwcli03@192.168.0.25;expires=3600. Allow: INVITE,ACK,BYE,CANCEL,OPTIONS,PRACK,REFER,NOTIFY,SUBSCRIBE,INFO. User-Agent: Twinkle/1.0. Content-Length: 0.
.
U 2008/03/20 13:57:33.321952 192.168.0.25:5060 -> 192.168.0.10:5060 REGISTER sip:spo.voip.br SIP/2.0. Via: SIP/2.0/UDP 192.168.0.25;rport;branch=z9hG4bKignjupsg. Max-Forwards: 70. To: "vmwcli03" sip:vmwcli03@spo.voip.br. From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan. Call-ID: iswtwciijecswfp@192.168.0.25. CSeq: 883 REGISTER. Contact: sip:vmwcli03@192.168.0.25;expires=3600. Allow: INVITE,ACK,BYE,CANCEL,OPTIONS,PRACK,REFER,NOTIFY,SUBSCRIBE,INFO. User-Agent: Twinkle/1.0. Content-Length: 0. .
U 2008/03/20 13:57:35.309584 192.168.0.25:5060 -> 192.168.0.10:5060
REGISTER sip:spo.voip.br SIP/2.0. Via: SIP/2.0/UDP 192.168.0.25;rport;branch=z9hG4bKignjupsg. Max-Forwards: 70. To: "vmwcli03" sip:vmwcli03@spo.voip.br. From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan. Call-ID: iswtwciijecswfp@192.168.0.25. CSeq: 883 REGISTER. Contact: sip:vmwcli03@192.168.0.25;expires=3600. Allow: INVITE,ACK,BYE,CANCEL,OPTIONS,PRACK,REFER,NOTIFY,SUBSCRIBE,INFO. User-Agent: Twinkle/1.0. Content-Length: 0.
.
U 2008/03/20 13:57:37.026703 192.168.0.10:5060 -> 192.168.0.25:5060
SIP/2.0 483 Too Many Hops.
Via: SIP/2.0/UDP 192.168.0.25;rport=5060;branch=z9hG4bKignjupsg. To: "vmwcli03" sip:vmwcli03@spo.voip.br;tag= 1333af5435552d3677a0ca954c3a6e9f.6889. From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan. Call-ID: iswtwciijecswfp@192.168.0.25. CSeq: 883 REGISTER. Server: OpenSER (1.3.0-notls (i386/linux)). Content-Length: 0.
Marcio wrote:
Hi,
If anybody can take a look openser.cfg below. I`m working vmware (enviroments virtual)...Whenever I try a "register" a client I get 483: Too many Hops....as if he had a loop (config file) but I am unable to find the problem...
I am going to take a guess and say that either your /etc/hosts file does not contain the proper IP address and/or you do not have an appropriate entry in the domain table.
Jeremy McNamara
Thanks for the tip....but didn`t worked...either adding the ip addr of the server (vmw02-srv.spo.voip.br:192.168.0.10) and client (vmwcli03.spo.voip.br: 192.168.0.25) to /etc/hosts...
I was thinking if it is essential the use of alias for clients?? I didn't to use...
I received this in ngrep -d eth1 -qt -W byline port 5060:
U 2008/03/22 10:56:44.340878 192.168.0.25:5060 -> 192.168.0.10:5060
*REGISTER* sip:spo.voip.br SIP/2.0.
Via: SIP/2.0/UDP 192.168.0.25;rport;branch=z9hG4bKignjupsg.
Max-Forwards: 70.
To: "vmwcli03" sip:vmwcli03@spo.voip.br.
From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan.
Call-ID: iswtwciijecswfp@192.168.0.25.
CSeq: 883 REGISTER.
Contact: sip:vmwcli03@192.168.0.25;expires=3600.
Allow: INVITE,ACK,BYE,CANCEL,OPTIONS,PRACK,REFER,NOTIFY,SUBSCRIBE,INFO.
User-Agent: Twinkle/1.0.
Content-Length: 0.
U 2008/03/22 10:56:49.435807 192.168.0.10:5060 -> 192.168.0.25:5060
*SIP/2.0 483 Too Many Hops.*
Via: SIP/2.0/UDP 192.168.0.25;rport=5060;branch=z9hG4bKignjupsg.
To: "vmwcli03" sip:vmwcli03@spo.voip.br;tag= 1333af5435552d3677a0ca954c3a6e9f.6889.
From: "vmwcli03" sip:vmwcli03@spo.voip.br;tag=dcoan.
Call-ID: iswtwciijecswfp@192.168.0.25.
*CSeq: 883 REGISTER*.
Server: OpenSER (1.3.0-notls (i386/linux)).
Content-Length: 0.
2008/3/21, Jeremy McNamara jj@nufone.net:
Marcio wrote:
Hi,
If anybody can take a look openser.cfg below. I`m working vmware (enviroments virtual)...Whenever I try a "register" a client I get 483: Too many Hops....as if he had a loop (config file) but I am unable to find the problem...
I am going to take a guess and say that either your /etc/hosts file does not contain the proper IP address and/or you do not have an appropriate entry in the domain table.
Jeremy McNamara
Hi all,
We are using openser as sip server but we are facing problem because if some call fails in middle then after if we try to call using same setup, We are getting 473 filtered destination responses. Can we by somehow disable this? Or
How to handle this response if we are acting as a gateway?
Thanks, Vikas C.G.
Hi Vikas,
This reply is internally generated by the blacklists core - the destination IP address was blacklisted (maybe due a 50x or timeout previous response). This is a self-protection mechanism to prevent sending requests to destination already detected as unresponsive.
You can disable this by setting: disable_dns_blacklist = yes
Regards, Bogdan
Vikas CG. wrote:
Hi all,
We are using openser as sip server but we are facing problem because if some call fails in middle then after if we try to call using same setup, We are getting 473 filtered destination responses. Can we by somehow disable this? Or
How to handle this response if we are acting as a gateway?
Thanks, Vikas C.G.
Users mailing list Users@lists.openser.org http://lists.openser.org/cgi-bin/mailman/listinfo/users
-
Bogdan-Andrei Iancu -
Jeremy McNamara -
Marcio -
Vikas CG.