[SR-Users] Major problem with setup NAT + MULTIDOMAIN

SamyGo govoiper at gmail.com
Tue Jan 29 10:51:07 CET 2013 

Hi again,

If you're usng another table then user with plain password can get
registered given then domain coloumn is mentioned in the auth_db modparam.
Also turn on the use_domain param for usrloc module as well so it saves the
users with their domain part in AOR.

I don't know (or found any) the logs you're talking about.

Thanks,
Sammy



On Tue, Jan 29, 2013 at 1:06 PM, Rumen Mihailov <zealas1662 at gmail.com>wrote:

> Hello Sammy,
>
> thank you for your input.
>
> sip table is in another database and I use asterisk database as per
> the example here:
> http://kb.asipto.com/asterisk:realtime:kamailio-3.3.x-asterisk-10.7.0-astdb
>
> > Are you sure
> > that the passwords are calculated using the real/domain part of the SIP
> User
> > definition?
>
> This however I have no clue how to check.
>
> Indeed the option use_domain was not enabled. I will check later today.
>
> Sammy, what about the debug logging ? do you have any clue about that ?
>
> Regards,
> Rumen
>
> On 29 January 2013 08:20, SamyGo <govoiper at gmail.com> wrote:
> > Hi Rumen,
> >
> > Can you tell how are you creating users in your "sip" table? Are you sure
> > that the passwords are calculated using the real/domain part of the SIP
> User
> > definition?
> >
> > Also ensure that your auth_db module has multidomain(use-domain) modparam
> > enabled and if you're using your own table coloumn to store user's domain
> > part then edit the modparam to use that particular coloumn
> (domain_coloumn)
> >
> > Thanks,
> > Sammy
> >
> >
> >
> > On Tue, Jan 29, 2013 at 2:52 AM, Rumen Mihailov <zealas1662 at gmail.com>
> > wrote:
> >>
> >> Hi guys,
> >>
> >> I've baning my head for the last 6 7 days with something that have to
> >> be universally simple but obviously for me it is not, so please do
> >> help.
> >>
> >> I have the following setup.
> >>
> >> xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
> >>
> >> Kamailio listens on 10.2.47.201
> >> I have setup a domain xxx.itradebg.com and I've made the appropriate
> >> records in the DNS.
> >> I have inserted the domain xxx.itradebg.com in the domain table in the
> >> database and kamctl domain show shows the correct thing.
> >>
> >> Now when I try to register 999 at xxx.itradebg.com I get Request timed out
> >>
> >> I have this in my config:
> >>         if (is_method("REGISTER") || from_uri==myself)
> >>         {
> >>                 if (!auth_check("$fd", "sip", "1")) {
> >>                         auth_challenge("$fd", "0");
> >>                         exit;
> >>                 }
> >>         }
> >>         if (from_uri!=myself && uri!=myself)
> >>         {
> >>
> >>                 if(lookup_domain("$fd", "@from.uri.host")){
> >>                         xlog("LOCAL DOMAIN -> REGISTER");
> >>                         exit;
> >>                 }
> >>                 else{
> >>                         xlog("L_WARN","FROM NOT LOCAL");
> >>                         sl_send_reply("403","Sorry mate not relaying");
> >>                         exit;
> >>                 }
> >>         }
> >>
> >> By the time of writing this I realised that this should be all
> >> rewritten to this only, as the second check is useless:
> >>
> >>         if (is_method("REGISTER") || from_uri==myself)
> >>         {
> >>                 if (!auth_check("$fd", "sip", "1")) {
> >>                         auth_challenge("$fd", "0");
> >>                         exit;
> >>                 }
> >>         }
> >>
> >> However I get 401 Unauthorized. The previous setup was giving me 408 -
> >> Request Timed out...
> >>
> >> I am pretty sure I have the passwords correct.
> >>
> >> What I cannot understand is why authentication fails ?!
> >>
> >> Also, how do I set kamailio to print debug output ?
> >> debug=9
> >> log_stderror=no
> >>
> >> This is what I have in the .conf file. /var/log/messages seems to only
> >> have what I have printed with xlog... (think)
> >>
> >> I am really out of ideas... perhaps I need some sleep.
> >>
> >> Anyway any input is helpful guys.
> >>
> >> Thanks,
> >> Rumen
> >> http://itradebg.com
> >>
> >> _______________________________________________
> >> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> >> sr-users at lists.sip-router.org
> >> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
> >
> >
> >
> > _______________________________________________
> > SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> > sr-users at lists.sip-router.org
> > http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
> >
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20130129/31805ced/attachment-0001.htm>

More information about the sr-users mailing list