[SR-Users] Require Certificate
Bruno Bresciani
bruno.bresciani at gmail.com
Fri Feb 17 20:34:51 CET 2012
Thanks Daniel
but I have some problems...
a) my SIP gateway doesn't send the certificate when it isn't demanded...
b) I was reading about TLS specific config file (tls.cfg), but my
requirements doesn't allow to configure differents TLS ports.
Do you have other idea?
Best Regards
2012/2/17 Daniel Pocock <daniel at pocock.com.au>
>
>
> On 17/02/12 19:01, Bruno Bresciani wrote:
> > Hi All,
> >
> > Does it possible on tls module require certificates only some hosts?
>
> Yes, you have at least two options:
>
> a) just set the require_certificate 0 option - make sure your client
> still sends it's cert even when it is not demanded - and in your
> kamailio.cfg, your route logic will need to check whether a certificate
> was used by the client
>
> b) looking in tls.cfg, it appears you can set up different ports with
> different TLS policies, so the clients that must send a cert could be
> connecting to a port with a stricter configuration
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20120217/7c2fd620/attachment.htm>
More information about the sr-users
mailing list