[SR-Users] Kamailio 4.3 decrypting SIP-TLS

Daniel-Constantin Mierla miconda at gmail.com
Tue Feb 20 09:16:59 CET 2018


Hello,


for Kamailio v4.3 you can print is syslog the $mb as it was suggested in
the other response
(https://lists.kamailio.org/pipermail/sr-users/2018-February/100378.html),
you can do that in request_route or onreply_route. In onsend_route you
can print $snd(buf).


Then there is siptrace module that can work standalone and store sip
traffic in a database table.


If you have a production system with lot of traffic, Homer Sipcapture
project might be something to consider -- kamailio has the modules
siptrace and sipcapture.


I also want to highlight that v5.1 has a new module sipdump that should
simplify the capture of sip traffic:


  * https://www.kamailio.org/docs/modules/stable/modules/sipdump.html


I added it because I needed to look at tls traffic while
developing/debugging.


Cheers,
Daniel


On 16.02.18 21:28, Remsik,Robert wrote:
>
> Hello!
>
>
> I'm working on setting up our kamailio instance to use TLS for
> inter-phone communication and so far I've been able to configure the
> GUI and get it to work which is great.  However, I'm trying to grab a
> packet capture and decode the TLS session to get the SIP ladder (so I
> can troubleshoot issues) and so far I've been unable to.  I've been
> following the article
> at: http://packetpushers.net/using-wireshark-to-decode-ssltls-packets/ and
> using the kamailio self-signed cert as I think that's the cert being
> used with no success.  I'm getting the Cipher Suite:
> TLS_RSA_WITH_AES_256_CBC_SHA (0x0035) which doesn't use perfect
> forward secrecy so it should be able to be decoded.
>
>
> Is there a way to decode the kamailio TLS encoded communications so I
> can troubleshoot issues that may come up?
>
>
> Thank you in advance,
> Robert
>
>
>
>
> Robert Remsik
>
> Telecom
>
> Desk Phone: 970 491 7120
>
> Robert.Remsik at colostate.edu
>
>
>
> _______________________________________________
> Kamailio (SER) - Users Mailing List
> sr-users at lists.kamailio.org
> https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users

-- 
Daniel-Constantin Mierla
www.twitter.com/miconda -- www.linkedin.com/in/miconda
Kamailio Advanced Training - March 5-7, 2018, Berlin - www.asipto.com
Kamailio World Conference - May 14-16, 2018 - www.kamailioworld.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kamailio.org/pipermail/sr-users/attachments/20180220/1a684149/attachment.html>


More information about the sr-users mailing list