[Kamailio-Users] openser and asterisk auth problem.

BERGANZ François francois at acropolistelecom.net
Thu Dec 18 11:14:56 CET 2008 

I want to authenticate in openser some users which are in asterisk conf (to do load balancing with another asterisk).
If I delete the user from the asterisk config and insecure=invite for the openser, asterisk accept the call, but, I want that asterisk see that it is that user which is doing the call.


Cordialement,
BERGANZ François


http://www.acropolistelecom.net
 Pensez à l'Environnement, n'imprimez ce mail que si nécessaire.


-----Message d'origine-----
De : Andrew V.Statsenko [mailto:alter at siptalk.ru] 
Envoyé : jeudi 18 décembre 2008 11:00
À : BERGANZ François
Objet : ***SPAM*** Re: [Kamailio-Users] openser and asterisk auth problem.

В Чтв, 18/12/2008 в 10:31 +0100, BERGANZ François пишет:
> -----I have that error:

> <--- SIP read from UDP://192.168.1.156:5060 --->
> INVITE sip:33662971130 at 192.168.1.156 SIP/2.0
> Record-Route: <sip:192.168.1.156;lr=on;ftag=0c46027a>
> Via: SIP/2.0/UDP 192.168.1.156;branch=z9hG4bK20d2.de427962.0
> Via: SIP/2.0/UDP 192.168.1.60:43490;branch=z9hG4bK-d8754z-c15d2350d0742a11-1---d8754z-;rport=43490
> Max-Forwards: 70
> Contact: <sip:6833211245 at 192.168.1.60:43490>
> To: "33662971130"<sip:33662971130 at 192.168.1.156>
> From: "6833211245"<sip:6833211245 at 192.168.1.156>;tag=0c46027a
> Call-ID: YTkxOWU5MGJjZjJhMWFmODZhMzZkMTU1YzUzYjUyMTc.
> CSeq: 2 INVITE
> Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, SUBSCRIBE, INFO
> Content-Type: application/sdp
> User-Agent: X-Lite release 1100l stamp 47546
> Content-Length: 231
[..]



> <------------->
> --- (14 headers 10 lines) ---
> Sending to 192.168.1.156 : 5060 (no NAT)
> Using INVITE request as basis request - YTkxOWU5MGJjZjJhMWFmODZhMzZkMTU1YzUzYjUyMTc.
> Found user '6833211245' for '6833211245'

This is the key trouble in your configuration: Asterisk trying to
authenticate this call as call from _user_ (INVITE->401->INVITE+auth),
but not as _peer_.


Will you describe us where you want to authenticate you users :

- at the OpenSER frontend (BTW, I don't see auth headers in first
INVITE)
- or in the Asterisk backend ?


Which service logic you are building ?

--
WBR,
Alter

More information about the sr-users mailing list