[SR-Users] Major problem with setup NAT + MULTIDOMAIN
Rumen Mihailov
zealas1662 at gmail.com
Tue Jan 29 12:44:22 CET 2013
Hello Sammy,
these are the settings for my auth_db
modparam("auth_db", "user_column", "username")
modparam("auth_db", "password_column", "sippasswd")
modparam("auth_db", "db_url", DBASTURL)
modparam("auth_db", "version_table", 0)
modparam("auth_db", "domain_column", "fromdomain")
modparam("auth_db", "use_domain", 1)
I am not sure if calculate_ha1 should be present.
passwords are stored in plain text in the sippasswd field.
Regarding the log I want to know how can I enable debug logging of
Kamailio... so that I can see what queries are executed and what
exactly is the issue when something fails.
thank you.
Regards,
Rumen
On 29 January 2013 11:51, SamyGo <govoiper at gmail.com> wrote:
> Hi again,
>
> If you're usng another table then user with plain password can get
> registered given then domain coloumn is mentioned in the auth_db modparam.
> Also turn on the use_domain param for usrloc module as well so it saves the
> users with their domain part in AOR.
>
> I don't know (or found any) the logs you're talking about.
>
> Thanks,
> Sammy
>
>
>
> On Tue, Jan 29, 2013 at 1:06 PM, Rumen Mihailov <zealas1662 at gmail.com>
> wrote:
>>
>> Hello Sammy,
>>
>> thank you for your input.
>>
>> sip table is in another database and I use asterisk database as per
>> the example here:
>>
>> http://kb.asipto.com/asterisk:realtime:kamailio-3.3.x-asterisk-10.7.0-astdb
>>
>> > Are you sure
>> > that the passwords are calculated using the real/domain part of the SIP
>> > User
>> > definition?
>>
>> This however I have no clue how to check.
>>
>> Indeed the option use_domain was not enabled. I will check later today.
>>
>> Sammy, what about the debug logging ? do you have any clue about that ?
>>
>> Regards,
>> Rumen
>>
>> On 29 January 2013 08:20, SamyGo <govoiper at gmail.com> wrote:
>> > Hi Rumen,
>> >
>> > Can you tell how are you creating users in your "sip" table? Are you
>> > sure
>> > that the passwords are calculated using the real/domain part of the SIP
>> > User
>> > definition?
>> >
>> > Also ensure that your auth_db module has multidomain(use-domain)
>> > modparam
>> > enabled and if you're using your own table coloumn to store user's
>> > domain
>> > part then edit the modparam to use that particular coloumn
>> > (domain_coloumn)
>> >
>> > Thanks,
>> > Sammy
>> >
>> >
>> >
>> > On Tue, Jan 29, 2013 at 2:52 AM, Rumen Mihailov <zealas1662 at gmail.com>
>> > wrote:
>> >>
>> >> Hi guys,
>> >>
>> >> I've baning my head for the last 6 7 days with something that have to
>> >> be universally simple but obviously for me it is not, so please do
>> >> help.
>> >>
>> >> I have the following setup.
>> >>
>> >> xx.xx.xx.xx (real IP 1:1 NAT) -> 10.2.47.201
>> >>
>> >> Kamailio listens on 10.2.47.201
>> >> I have setup a domain xxx.itradebg.com and I've made the appropriate
>> >> records in the DNS.
>> >> I have inserted the domain xxx.itradebg.com in the domain table in the
>> >> database and kamctl domain show shows the correct thing.
>> >>
>> >> Now when I try to register 999 at xxx.itradebg.com I get Request timed out
>> >>
>> >> I have this in my config:
>> >> if (is_method("REGISTER") || from_uri==myself)
>> >> {
>> >> if (!auth_check("$fd", "sip", "1")) {
>> >> auth_challenge("$fd", "0");
>> >> exit;
>> >> }
>> >> }
>> >> if (from_uri!=myself && uri!=myself)
>> >> {
>> >>
>> >> if(lookup_domain("$fd", "@from.uri.host")){
>> >> xlog("LOCAL DOMAIN -> REGISTER");
>> >> exit;
>> >> }
>> >> else{
>> >> xlog("L_WARN","FROM NOT LOCAL");
>> >> sl_send_reply("403","Sorry mate not relaying");
>> >> exit;
>> >> }
>> >> }
>> >>
>> >> By the time of writing this I realised that this should be all
>> >> rewritten to this only, as the second check is useless:
>> >>
>> >> if (is_method("REGISTER") || from_uri==myself)
>> >> {
>> >> if (!auth_check("$fd", "sip", "1")) {
>> >> auth_challenge("$fd", "0");
>> >> exit;
>> >> }
>> >> }
>> >>
>> >> However I get 401 Unauthorized. The previous setup was giving me 408 -
>> >> Request Timed out...
>> >>
>> >> I am pretty sure I have the passwords correct.
>> >>
>> >> What I cannot understand is why authentication fails ?!
>> >>
>> >> Also, how do I set kamailio to print debug output ?
>> >> debug=9
>> >> log_stderror=no
>> >>
>> >> This is what I have in the .conf file. /var/log/messages seems to only
>> >> have what I have printed with xlog... (think)
>> >>
>> >> I am really out of ideas... perhaps I need some sleep.
>> >>
>> >> Anyway any input is helpful guys.
>> >>
>> >> Thanks,
>> >> Rumen
>> >> http://itradebg.com
>> >>
>> >> _______________________________________________
>> >> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
>> >> sr-users at lists.sip-router.org
>> >> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>> >
>> >
>> >
>> > _______________________________________________
>> > SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
>> > sr-users at lists.sip-router.org
>> > http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>> >
>>
>> _______________________________________________
>> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
>> sr-users at lists.sip-router.org
>> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
>
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
More information about the sr-users
mailing list