[sr-dev] git:master:762fc606: ims_ipsec_pcscf: ipsec_forward() option to use UE client port for requests over TCP

Daniel-Constantin Mierla miconda at gmail.com
Wed Jun 1 14:15:06 CEST 2022 

Module: kamailio
Branch: master
Commit: 762fc6068a23e7afd3251be58732d054a9dadab0
URL: https://github.com/kamailio/kamailio/commit/762fc6068a23e7afd3251be58732d054a9dadab0

Author: Daniel-Constantin Mierla <miconda at gmail.com>
Committer: Daniel-Constantin Mierla <miconda at gmail.com>
Date: 2022-06-01T13:11:37+02:00

ims_ipsec_pcscf: ipsec_forward() option to use UE client port for requests over TCP

---

Modified: src/modules/ims_ipsec_pcscf/cmd.c

---

Diff:  https://github.com/kamailio/kamailio/commit/762fc6068a23e7afd3251be58732d054a9dadab0.diff
Patch: https://github.com/kamailio/kamailio/commit/762fc6068a23e7afd3251be58732d054a9dadab0.patch

---

diff --git a/src/modules/ims_ipsec_pcscf/cmd.c b/src/modules/ims_ipsec_pcscf/cmd.c
index 8fa4d9cf23..35bcaa28fb 100644
--- a/src/modules/ims_ipsec_pcscf/cmd.c
+++ b/src/modules/ims_ipsec_pcscf/cmd.c
@@ -88,6 +88,8 @@ extern struct tm_binds tmb;
 #define IPSEC_NOALIAS_SEARCH (1<<4)
 /* if set - do not reset dst uri for IPsec forward */
 #define IPSEC_NODSTURI_RESET (1<<5)
+/* if set - use user equipment client port as target for requests over TCP */
+#define IPSEC_TCPPORT_UEC (1<<6)
 
 /* if set - delete unused tunnels before every registration */
 #define IPSEC_CREATE_DELETE_UNUSED_TUNNELS 0x01
@@ -925,11 +927,20 @@ int ipsec_forward(struct sip_msg *m, udomain_t *d, int _cflags)
 		// for Request get the dest proto from the saved contact
 		dst_proto = pcontact->received_proto;
 
-		// for Request sends from P-CSCF client port
-		src_port = s->port_pc;
+		if(_cflags & IPSEC_TCPPORT_UEC) {
+			// for Request and TCP sends from P-CSCF server port, for Request and UDP sends from P-CSCF client port
+			src_port = dst_proto == PROTO_TCP ? s->port_ps : s->port_pc;
 
-		// for Request sends to UE server port
-		dst_port = s->port_us;
+			// for Request and TCP sends to UE client port, for Request and UDP sends to UE server port
+			dst_port = dst_proto == PROTO_TCP ? s->port_uc : s->port_us;
+
+		} else {
+			// for Request sends from P-CSCF client port
+			src_port = s->port_pc;
+
+			// for Request sends to UE server port
+			dst_port = s->port_us;
+		}
 	}
 
 	if(!(_cflags & IPSEC_NODSTURI_RESET)) {

More information about the sr-dev mailing list