Dear Mailinglist,
I am a rookie in SER and joined this mailinglist a few minutes ago. Hope you can help me with my question. I found ser at my search for a sip / rtp proxy. I want to install the following scenario:
client -> Internet or WLAN -> SER proxy + rtpproxy(DMZ) -> Asterisk (Internal LAN)
Is it possible with openser that the authentication is passed through to asterisk and openser accept the call if the user is valid? My idea is, not to have any userdata on the SER proxy. I just want that the proxy forwards the request to the asteriskserver and checks if the REGISTER is OK or not. If the user is invalid, the proxy should deny requests from this user to the asteriskserver. If this will be possible, is it possible to integrate encryption of RTP and SIP too?
Like a http reverseproxy?
Thank you very much.
Dominic
HDPnet GmbH Erwin-Rohde-Str. 18 69120 Heidelberg
Geschaeftsfuehrer: Marc Hermann Registergericht: Mannheim HRB 337012 Sitz: Heidelberg Umsatzsteuer ID Nr.: DE 211 257 470
www.hdpnet.de
Diese E-Mail enthaelt vertrauliche und/oder rechtlich geschuetzte Informationen. Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtuemlich erhalten haben, informieren Sie bitte sofort den Absender und vernichten Sie diese Mail. Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail ist nicht gestattet.
hdpml wrote:
Dear Mailinglist,
I am a rookie in SER and joined this mailinglist a few minutes ago. Hope you can help me with my question. I found ser at my search for a sip / rtp proxy. I want to install the following scenario:
client -> Internet or WLAN -> SER proxy + rtpproxy(DMZ) -> Asterisk (Internal LAN)
Is it possible with openser that the authentication is passed through to asterisk and openser accept the call if the user is valid? My idea is, not to have any userdata on the SER proxy. I just want that the proxy forwards the request to the asteriskserver and checks if the REGISTER is OK or not. If the user is invalid, the proxy should deny requests from this user to the asteriskserver.
You have 2 options: 1. Openser challenges/authenticates the user 2. Asterisk challenges/authenticates the user
If you use option 2, openser has to forward the requests to Asterisk. Thus, ALL requests must be forwarded to asterisk as openser does not know if the supplied credentials are correct or not.
regards klaus
If this will be possible, is it possible to integrate encryption of RTP and SIP too?
Like a http reverseproxy?
Thank you very much.
Dominic
HDPnet GmbH Erwin-Rohde-Str. 18 69120 Heidelberg
Geschaeftsfuehrer: Marc Hermann Registergericht: Mannheim HRB 337012 Sitz: Heidelberg Umsatzsteuer ID Nr.: DE 211 257 470 www.hdpnet.de
Diese E-Mail enthaelt vertrauliche und/oder rechtlich geschuetzte Informationen. Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtuemlich erhalten haben, informieren Sie bitte sofort den Absender und vernichten Sie diese Mail. Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail ist nicht gestattet.
Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users
-
hdpml -
Klaus Darilion