[Serusers] ser configuration files (ser.cfg)

Andrey Kouprianov andrey.kouprianov at gmail.com
Mon May 29 06:53:15 CEST 2006


Thanx :)

On 5/28/06, Greger V. Teigre <greger at teigre.com> wrote:
>
> Hi Andrey,
> Sending a note to onsip.org admins would maybe have helped ... ;-)
> Try ftp://siprouter.onsip.org/pub/gettingstarted
> g-)
>
> Andrey Kouprianov wrote:
> Hello,
>
> There are 2 SER configuration files attached here. They are good for
> testing. Me, I always have problems downloading config tar ball from
> onsip.org (still havent got it, actually), so I typed these 2 files.
> So, there they are.Please, use, but change your IP and domain/realm
> settings (the parts that you'd have to change are indicated in the
> file explicitly).
>
> Have fun.
> ________________________________
>
debug=3
fork=yes
log_stderror=no

listen=192.168.0.1 #INSERT YOUR SIP
> SERVER IP HERE
#alias="domain.net" #INSERT YOUR ALIAS DOMAIN
> HERE
port=5060
children=4

dns=no
rev_dns=no
fifo="/tmp/ser_fifo"
fifo_db_url="mysql://ser:heslo@localhost/ser"

loadmodule
> "/usr/local/lib/ser/modules/mysql.so"
loadmodule
> "/usr/local/lib/ser/modules/sl.so"
loadmodule
> "/usr/local/lib/ser/modules/tm.so"
loadmodule
> "/usr/local/lib/ser/modules/rr.so"
loadmodule
> "/usr/local/lib/ser/modules/maxfwd.so"
loadmodule
> "/usr/local/lib/ser/modules/usrloc.so"
loadmodule
> "/usr/local/lib/ser/modules/registrar.so"
loadmodule
> "/usr/local/lib/ser/modules/auth.so"
loadmodule
> "/usr/local/lib/ser/modules/auth_db.so"
loadmodule
> "/usr/local/lib/ser/modules/uri_db.so"

modparam("auth_db|uri_db|usrloc",
> "db_url", "mysql://ser:heslo@localhost/ser")
modparam("auth_db",
> "calculate_ha1", 1)
modparam("auth_db", "password_column",
> "password")
modparam("usrloc", "db_mode", 2)
modparam("rr",
> "enable_full_lr", 1)

route {

 #
> -----------------------------------------------------------------
> # Sanity Check Section
 #
> -----------------------------------------------------------------
> if (!mf_process_maxfwd_header("10")) {
> sl_send_reply("483", "Too Many Hops");
 break;
 };

 if (msg:len > max_len)
> {
 sl_send_reply("513", "Message Overflow");
 break;
 };

 #
> -----------------------------------------------------------------
> # Record Route Section
 #
> -----------------------------------------------------------------
> if (method!="REGISTER") {
 record_route();
 };

 #
> -----------------------------------------------------------------
> # Loose Route Section
 #
> -----------------------------------------------------------------
> if (loose_route()) {
 route(1);
 break;
 };

 #
> -----------------------------------------------------------------
> # Call Type Processing Section
 #
> -----------------------------------------------------------------
> if (uri!=myself) {
 route(1);
 break;
 };

 if (method=="INVITE") {
> route(3);
 break;
 } else if (method=="REGISTER") {
 route(2);
 break;
 };

> lookup("aliases");
 if (uri!=myself) {
 route(1);
 break;
 };

 if
> (!lookup("location")) {
 sl_send_reply("404", "User Not Found");
 break;
> };

 route(1);
}

route[1] {
 #
> -----------------------------------------------------------------
> # Default Message Handler
 #
> -----------------------------------------------------------------
> if (!t_relay()) {
 sl_reply_error();
 };
}

route[2] {

 #
> -----------------------------------------------------------------
> # REGISTER Message Handler
 #
> ----------------------------------------------------------------
> sl_send_reply("100", "Trying");

 if (!www_authorize("mysip.domain.net",
> "subscriber")) { #INSERT YOUR DOMAIN/REALM HERE
> www_challenge("mysip.domain.net", "0"); #INSERT YOUR DOMAIN/REALM HERE
> break;
 }

 if (!check_to()) {
 sl_send_reply("401", "Unauthorized");
> break;
 };

 consume_credentials();

 if (!save("location")) {
> sl_reply_error();
 };
}

route[3] {

 #
> -----------------------------------------------------------------
> # INVITE Message Handler
 #
> -----------------------------------------------------------------
> if (!www_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR
> DOMAIN/REALM HERE
 www_challenge("mysip.domain.net", "0"); #INSERT YOUR
> DOMAIN/REALM HERE
 break;
 } else if (!check_from()) {
 sl_send_reply("403",
> "Forbidden. Use From=ID");
 break;
 };

 consume_credentials();

> lookup("aliases");
 if (uri!=myself) {
 route(1);
 break;
 };

 if
> (!lookup("location")) {
 sl_send_reply("404", "User Not Found");
 break;
> };

 route(1);
}





> ________________________________
>
debug=3
fork=yes
log_stderror=no

listen=192.168.0.1 #INSERT YOUR SIP
> SERVER IP HERE
#alias="domain.net" #INSERT YOUR ALIAS DOMAIN
> HERE
port=5060
children=7

dns=no
rev_dns=no
fifo="/tmp/ser_fifo"
fifo_mode=766
fifo_db_url="mysql://ser:heslo@localhost/ser"

sip_warning=yes
server_signature=no

#----------------
> Modules -------------------
loadmodule
> "/usr/local/lib/ser/modules/mysql.so"
loadmodule
> "/usr/local/lib/ser/modules/sl.so"
loadmodule
> "/usr/local/lib/ser/modules/tm.so"
loadmodule
> "/usr/local/lib/ser/modules/rr.so"
loadmodule
> "/usr/local/lib/ser/modules/maxfwd.so"
loadmodule
> "/usr/local/lib/ser/modules/usrloc.so"
loadmodule
> "/usr/local/lib/ser/modules/registrar.so"
loadmodule
> "/usr/local/lib/ser/modules/auth.so"
loadmodule
> "/usr/local/lib/ser/modules/auth_db.so"
loadmodule
> "/usr/local/lib/ser/modules/uri.so"
loadmodule
> "/usr/local/lib/ser/modules/uri_db.so"
loadmodule
> "/usr/local/lib/ser/modules/domain.so"
loadmodule
> "/usr/local/lib/ser/modules/mediaproxy.so"
loadmodule
> "/usr/local/lib/ser/modules/nathelper.so"
loadmodule
> "/usr/local/lib/ser/modules/textops.so"
loadmodule
> "/usr/local/lib/ser/modules/xlog.so"

#-----------------
> Parameters
> -------------------
modparam("auth_db|domain|uri_db|usrloc",
> "db_url", "mysql://ser:heslo@localhost/ser")
modparam("auth_db",
> "calculate_ha1", 1)
modparam("auth_db", "password_column",
> "password")

modparam("nathelper", "rtpproxy_disable",
> 1)
modparam("nathelper", "natping_interval", 0)

modparam("mediaproxy",
> "natping_interval", 30)
modparam("mediaproxy", "mediaproxy_socket",
> "/var/run/mediaproxy.sock")
modparam("mediaproxy", "sip_asymmetrics",
> "/usr/local/etc/ser/sip-clients")
modparam("mediaproxy",
> "rtp_asymmetrics",
> "/usr/local/etc/ser/rtp-clients")

modparam("usrloc",
> "db_mode", 2)

modparam("registrar", "nat_flag", 6)

modparam("rr",
> "enable_full_lr", 1)

#------------- Main Routing Block
> ----------------
route {

 #
> -----------------------------------------------------------------
> # Sanity Check Section
 #
> -----------------------------------------------------------------
> if (!mf_process_maxfwd_header("10")) {
 xlog("L_WARN",
> "[%Tf]: loop detected; method=%rm\n");
 sl_send_reply("483", "Too Many
> Hops");
 break;
 };

 if (msg:len > max_len) {
 xlog("L_WARN", "[%Tf]:
> message too big; length=%ml; from=%fu; IP=%is\n");
 sl_send_reply("513",
> "Message Overflow");
 break;
 };

 #
> -----------------------------------------------------------------
> # Record Route Section
 #
> -----------------------------------------------------------------
> if(method=="INVITE" && client_nat_test("3")) {
 xlog("L_WARN", "[%Tf]: NAT
> detected; method=%rm; from=%fu\n");
> record_route_preset("192.168.0.1:5060;nat=yes"); #INSERT YOUR SIP SERVER IP
> HERE
 }
 else if(method!="REGISTER") {
 record_route();
 };

 #
> -----------------------------------------------------------------
> # Call Teardown Section
 #
> -----------------------------------------------------------------
> if(method=="BYE" || method=="CANCEL") {
 end_media_session();
 };

 #
> -----------------------------------------------------------------
> # Loose Route Section
 #
> -----------------------------------------------------------------
> if (loose_route()) {

 if(has_totag() && (method=="INVITE" || method=="ACK")
> ) {

 if(client_nat_test("3") || search("^Route:.*;nat=yes") ) {
> setflag(6);
 use_media_proxy();
 };
 };

 route(1);
 break;
 };

 #
> -----------------------------------------------------------------
> # Call Type Processing Section
 #
> -----------------------------------------------------------------
> if (uri!=myself) {
 route(4);
 route(1);
 break;
 };

 if (method=="INVITE")
> {
 route(3);
 break;
 }
 else if (method=="REGISTER") {
 route(2);
 break;
> }
 else if(method=="CANCEL") {
 route(1);
 break;
 };

 lookup("aliases");
> if (uri!=myself) {
 route(4);
 route(1);
 break;
 };

 if
> (!lookup("location")) {
 sl_send_reply("404", "User Not Found");
 break;
> };

 route(1);
}

route[1] {

 #
> -----------------------------------------------------------------
> # Default Message Handler
 #
> -----------------------------------------------------------------

> t_on_reply("1");

 if (!t_relay()) {

 if(method=="INVITE" || method=="ACK")
> {
 end_media_session();
 };

 sl_reply_error();
 };
}

route[2] {

 #
> -----------------------------------------------
 # REGISTER
> Message Handler
 #
> -----------------------------------------------

> sl_send_reply("100", "Trying");

 if(!search("^Contact:[ ]*\*") &&
> client_nat_test("7") ) {
 setflag(6);
 fix_nated_register();
> force_rport();
 };

 if (!www_authorize("mysip.domain.net", "subscriber")) {
> #INSERT YOUR DOMAIN/REALM HERE
 www_challenge("mysip.domain.net", "0");
> #INSERT YOUR DOMAIN/REALM HERE
 break;
 }

 if (!check_to()) {
> xlog("L_WARN", "[%Tf]: possible uri spoofing attempt!; method=%rm; IP=%is;
> from=%fu; to=%tu\n");
 sl_send_reply("403", "Forbidden");
 break;
 };

> consume_credentials();

 if (!save("location")) {
 sl_reply_error();
> };
}

route[3] {

 #
> -----------------------------------------------------------------
> # INVITE Message Handler
 #
> -----------------------------------------------------------------

> if (!proxy_authorize("mysip.domain.net", "subscriber")) { #INSERT YOUR
> DOMAIN/REALM HERE
 proxy_challenge("mysip.domain.net", "0"); #INSERT YOUR
> DOMAIN/REALM HERE
 break;
 }
 else if (!check_from()) {
 xlog("L_WARN",
> "[%Tf]: possible uri spoofing attempt!; method=%rm; IP=%is; from=%fu;
> to=%tu\n");
 sl_send_reply("403", "Forbidden. Unregistered users not
> allowed!");
 break;
 };

 consume_credentials();

 if(client_nat_test("3") )
> {
 setflag(7);
 force_rport();
 fix_nated_contact();
 };

> lookup("aliases");
 if (uri!=myself) {
 route(4);
 route(1);
 break;
 };

> if (!lookup("location")) {
 sl_send_reply("404", "User Not Found");
 break;
> };

 route(4);
 route(1);
}

route[4] {

 #
> -----------------------------------------------------------------
> # NAT Traversal Handler
 #
> -----------------------------------------------------------------

> if(isflagset(6) || isflagset(7) ) {
 use_media_proxy();
> };
}

onreply_route[1] {

 if((isflagset(6) || isflagset(7)) &&
> (status=~"(180)|(183)|2[0-9][0-9]")) {

 if(
> !search("^Content-Length:[ ]*0") ) {
 use_media_proxy();
 };
 };

 if(
> client_nat_test("1") ) {
 fix_nated_contact();
 };
}
> ________________________________
>
_______________________________________________
Serusers
> mailing
> list
Serusers at lists.iptel.org
http://lists.iptel.org/mailman/listinfo/serusers
>



More information about the sr-users mailing list