[Serusers] Authenticating INVITE requests method
Marian Dumitru
marian.dumitru at voice-sistem.ro
Wed Mar 23 22:12:12 CET 2005
Hi Mohammad,
that's true - it must be proxy_xxxx() and not www_xxxx().
Regards,
Marian
info at beeplove.com wrote:
> Isn't it the regular practice to use proxy_challenge and proxy_authorize
> for non REGISER methods.
>
> Mohammad
>
>
> Original Message:
> -----------------
> From: Marian Dumitru marian.dumitru at voice-sistem.ro
> Date: Wed, 23 Mar 2005 21:59:27 +0100
> To: rrisco at millicom.net.pe, serusers at lists.iptel.org
> Subject: Re: [Serusers] Authenticating INVITE requests method
>
>
> Hi Rafael,
>
> replace
> if (method=="INVITE") {
> with
> if (method=="INVITE" && src_ip!=xxx.xxx.xxx.xxx) {
>
> where that many xxx-s is the GW's IP.
>
> Best regards,
> Marian
>
> Rafael J. Risco G.V. wrote:
>
>>Hello
>>I am doing some security improvements to my configuration because I´ve
>>realized that everyone can sends calls to PSTN gateways and other
>>registered users even if the caller fails to register in SER, so now I
>>instruct SER to check the username and password of the CALLER in every
>>INVITE request like that:
>>
>> if (method=="INVITE") {
>> if (!www_authorize("mydomain", "subscriber")) {
>> www_challenge("mydomain", "0");
>> break;
>> };
>> };
>>
>>
>>well it works but not when calls are generated in my gateway Cisco
>>AS5350 (these GWs dont have register comand) so I need some advice to
>>"exclude" gateway IP for this authorization process.
>>
>>thanks
>>Rafael
>>
>>
>
>
--
Voice System
http://www.voice-system.ro
More information about the sr-users
mailing list