[Serusers] ser configuration files (ser.cfg)
Greger V. Teigre
greger at teigre.com
Sun May 28 08:56:50 CEST 2006
Hi Andrey,
Sending a note to onsip.org admins would maybe have helped ... ;-)
Try ftp://siprouter.onsip.org/pub/gettingstarted
g-)
Andrey Kouprianov wrote:
> Hello,
>
> There are 2 SER configuration files attached here. They are good for
> testing. Me, I always have problems downloading config tar ball from
> onsip.org (still havent got it, actually), so I typed these 2 files.
> So, there they are.Please, use, but change your IP and domain/realm
> settings (the parts that you'd have to change are indicated in the
> file explicitly).
>
> Have fun.
> ------------------------------------------------------------------------
>
> debug=3
> fork=yes
> log_stderror=no
>
> listen=192.168.0.1 #INSERT YOUR SIP SERVER IP HERE
> #alias="domain.net" #INSERT YOUR ALIAS DOMAIN HERE
> port=5060
> children=4
>
> dns=no
> rev_dns=no
> fifo="/tmp/ser_fifo"
> fifo_db_url="mysql://ser:heslo@localhost/ser"
>
> loadmodule "/usr/local/lib/ser/modules/mysql.so"
> loadmodule "/usr/local/lib/ser/modules/sl.so"
> loadmodule "/usr/local/lib/ser/modules/tm.so"
> loadmodule "/usr/local/lib/ser/modules/rr.so"
> loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
> loadmodule "/usr/local/lib/ser/modules/usrloc.so"
> loadmodule "/usr/local/lib/ser/modules/registrar.so"
> loadmodule "/usr/local/lib/ser/modules/auth.so"
> loadmodule "/usr/local/lib/ser/modules/auth_db.so"
> loadmodule "/usr/local/lib/ser/modules/uri_db.so"
>
> modparam("auth_db|uri_db|usrloc", "db_url", "mysql://ser:heslo@localhost/ser")
> modparam("auth_db", "calculate_ha1", 1)
> modparam("auth_db", "password_column", "password")
> modparam("usrloc", "db_mode", 2)
> modparam("rr", "enable_full_lr", 1)
>
> route {
>
> # -----------------------------------------------------------------
> # Sanity Check Section
> # -----------------------------------------------------------------
> if (!mf_process_maxfwd_header("10")) {
> sl_send_reply("483", "Too Many Hops");
> break;
> };
>
> if (msg:len > max_len) {
> sl_send_reply("513", "Message Overflow");
> break;
> };
>
> # -----------------------------------------------------------------
> # Record Route Section
> # -----------------------------------------------------------------
> if (method!="REGISTER") {
> record_route();
> };
>
> # -----------------------------------------------------------------
> # Loose Route Section
> # -----------------------------------------------------------------
> if (loose_route()) {
> route(1);
> break;
> };
>
> # -----------------------------------------------------------------
> # Call Type Processing Section
> # -----------------------------------------------------------------
> if (uri!=myself) {
> route(1);
> break;
> };
>
> if (method=="INVITE") {
> route(3);
> break;
> } else if (method=="REGISTER") {
> route(2);
> break;
> };
>
> lookup("aliases");
> if (uri!=myself) {
> route(1);
> break;
> };
>
> if (!lookup("location")) {
> sl_send_reply("404", "User Not Found");
> break;
> };
>
> route(1);
> }
>
> route[1] {
> # -----------------------------------------------------------------
> # Default Message Handler
> # -----------------------------------------------------------------
> if (!t_relay()) {
> sl_reply_error();
> };
> }
>
> route[2] {
>
> # -----------------------------------------------------------------
> # REGISTER Message Handler
> # ----------------------------------------------------------------
> sl_send_reply("100", "Trying");
>
> if (!www_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE
> www_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE
> break;
> }
>
> if (!check_to()) {
> sl_send_reply("401", "Unauthorized");
> break;
> };
>
> consume_credentials();
>
> if (!save("location")) {
> sl_reply_error();
> };
> }
>
> route[3] {
>
> # -----------------------------------------------------------------
> # INVITE Message Handler
> # -----------------------------------------------------------------
> if (!www_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE
> www_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE
> break;
> } else if (!check_from()) {
> sl_send_reply("403", "Forbidden. Use From=ID");
> break;
> };
>
> consume_credentials();
>
> lookup("aliases");
> if (uri!=myself) {
> route(1);
> break;
> };
>
> if (!lookup("location")) {
> sl_send_reply("404", "User Not Found");
> break;
> };
>
> route(1);
> }
>
>
>
>
>
> ------------------------------------------------------------------------
>
> debug=3
> fork=yes
> log_stderror=no
>
> listen=192.168.0.1 #INSERT YOUR SIP SERVER IP HERE
> #alias="domain.net" #INSERT YOUR ALIAS DOMAIN HERE
> port=5060
> children=7
>
> dns=no
> rev_dns=no
> fifo="/tmp/ser_fifo"
> fifo_mode=766
> fifo_db_url="mysql://ser:heslo@localhost/ser"
>
> sip_warning=yes
> server_signature=no
>
> #---------------- Modules -------------------
> loadmodule "/usr/local/lib/ser/modules/mysql.so"
> loadmodule "/usr/local/lib/ser/modules/sl.so"
> loadmodule "/usr/local/lib/ser/modules/tm.so"
> loadmodule "/usr/local/lib/ser/modules/rr.so"
> loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
> loadmodule "/usr/local/lib/ser/modules/usrloc.so"
> loadmodule "/usr/local/lib/ser/modules/registrar.so"
> loadmodule "/usr/local/lib/ser/modules/auth.so"
> loadmodule "/usr/local/lib/ser/modules/auth_db.so"
> loadmodule "/usr/local/lib/ser/modules/uri.so"
> loadmodule "/usr/local/lib/ser/modules/uri_db.so"
> loadmodule "/usr/local/lib/ser/modules/domain.so"
> loadmodule "/usr/local/lib/ser/modules/mediaproxy.so"
> loadmodule "/usr/local/lib/ser/modules/nathelper.so"
> loadmodule "/usr/local/lib/ser/modules/textops.so"
> loadmodule "/usr/local/lib/ser/modules/xlog.so"
>
> #----------------- Parameters -------------------
> modparam("auth_db|domain|uri_db|usrloc", "db_url", "mysql://ser:heslo@localhost/ser")
> modparam("auth_db", "calculate_ha1", 1)
> modparam("auth_db", "password_column", "password")
>
> modparam("nathelper", "rtpproxy_disable", 1)
> modparam("nathelper", "natping_interval", 0)
>
> modparam("mediaproxy", "natping_interval", 30)
> modparam("mediaproxy", "mediaproxy_socket", "/var/run/mediaproxy.sock")
> modparam("mediaproxy", "sip_asymmetrics", "/usr/local/etc/ser/sip-clients")
> modparam("mediaproxy", "rtp_asymmetrics", "/usr/local/etc/ser/rtp-clients")
>
> modparam("usrloc", "db_mode", 2)
>
> modparam("registrar", "nat_flag", 6)
>
> modparam("rr", "enable_full_lr", 1)
>
> #------------- Main Routing Block ----------------
> route {
>
> # -----------------------------------------------------------------
> # Sanity Check Section
> # -----------------------------------------------------------------
> if (!mf_process_maxfwd_header("10")) {
> xlog("L_WARN", "[%Tf]: loop detected; method=%rm\n");
> sl_send_reply("483", "Too Many Hops");
> break;
> };
>
> if (msg:len > max_len) {
> xlog("L_WARN", "[%Tf]: message too big; length=%ml; from=%fu; IP=%is\n");
> sl_send_reply("513", "Message Overflow");
> break;
> };
>
> # -----------------------------------------------------------------
> # Record Route Section
> # -----------------------------------------------------------------
> if(method=="INVITE" && client_nat_test("3")) {
> xlog("L_WARN", "[%Tf]: NAT detected; method=%rm; from=%fu\n");
> record_route_preset("192.168.0.1:5060;nat=yes"); #INSERT YOUR SIP SERVER IP HERE
> }
> else if(method!="REGISTER") {
> record_route();
> };
>
> # -----------------------------------------------------------------
> # Call Teardown Section
> # -----------------------------------------------------------------
> if(method=="BYE" || method=="CANCEL") {
> end_media_session();
> };
>
> # -----------------------------------------------------------------
> # Loose Route Section
> # -----------------------------------------------------------------
> if (loose_route()) {
>
> if(has_totag() && (method=="INVITE" || method=="ACK") ) {
>
> if(client_nat_test("3") || search("^Route:.*;nat=yes") ) {
> setflag(6);
> use_media_proxy();
> };
> };
>
> route(1);
> break;
> };
>
> # -----------------------------------------------------------------
> # Call Type Processing Section
> # -----------------------------------------------------------------
> if (uri!=myself) {
> route(4);
> route(1);
> break;
> };
>
> if (method=="INVITE") {
> route(3);
> break;
> }
> else if (method=="REGISTER") {
> route(2);
> break;
> }
> else if(method=="CANCEL") {
> route(1);
> break;
> };
>
> lookup("aliases");
> if (uri!=myself) {
> route(4);
> route(1);
> break;
> };
>
> if (!lookup("location")) {
> sl_send_reply("404", "User Not Found");
> break;
> };
>
> route(1);
> }
>
> route[1] {
>
> # -----------------------------------------------------------------
> # Default Message Handler
> # -----------------------------------------------------------------
>
> t_on_reply("1");
>
> if (!t_relay()) {
>
> if(method=="INVITE" || method=="ACK") {
> end_media_session();
> };
>
> sl_reply_error();
> };
> }
>
> route[2] {
>
> # -----------------------------------------------
> # REGISTER Message Handler
> # -----------------------------------------------
>
> sl_send_reply("100", "Trying");
>
> if(!search("^Contact:[ ]*\*") && client_nat_test("7") ) {
> setflag(6);
> fix_nated_register();
> force_rport();
> };
>
> if (!www_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE
> www_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE
> break;
> }
>
> if (!check_to()) {
> xlog("L_WARN", "[%Tf]: possible uri spoofing attempt!; method=%rm; IP=%is; from=%fu; to=%tu\n");
> sl_send_reply("403", "Forbidden");
> break;
> };
>
> consume_credentials();
>
> if (!save("location")) {
> sl_reply_error();
> };
> }
>
> route[3] {
>
> # -----------------------------------------------------------------
> # INVITE Message Handler
> # -----------------------------------------------------------------
>
> if (!proxy_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE
> proxy_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE
> break;
> }
> else if (!check_from()) {
> xlog("L_WARN", "[%Tf]: possible uri spoofing attempt!; method=%rm; IP=%is; from=%fu; to=%tu\n");
> sl_send_reply("403", "Forbidden. Unregistered users not allowed!");
> break;
> };
>
> consume_credentials();
>
> if(client_nat_test("3") ) {
> setflag(7);
> force_rport();
> fix_nated_contact();
> };
>
> lookup("aliases");
> if (uri!=myself) {
> route(4);
> route(1);
> break;
> };
>
> if (!lookup("location")) {
> sl_send_reply("404", "User Not Found");
> break;
> };
>
> route(4);
> route(1);
> }
>
> route[4] {
>
> # -----------------------------------------------------------------
> # NAT Traversal Handler
> # -----------------------------------------------------------------
>
> if(isflagset(6) || isflagset(7) ) {
> use_media_proxy();
> };
> }
>
> onreply_route[1] {
>
> if((isflagset(6) || isflagset(7)) && (status=~"(180)|(183)|2[0-9][0-9]")) {
>
> if( !search("^Content-Length:[ ]*0") ) {
> use_media_proxy();
> };
> };
>
> if( client_nat_test("1") ) {
> fix_nated_contact();
> };
> }
> ------------------------------------------------------------------------
>
> _______________________________________________
> Serusers mailing list
> Serusers at lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20060528/6df17756/attachment.htm>
More information about the sr-users
mailing list