[Users] openser2openser
Alexander Philipp Lintenhofer
lintenhofer at aon.at
Wed Oct 5 14:40:12 CEST 2005
Hi Klaus,
TLS: Is this feature already tested with version 0.10.x? Is it necessary that
both proxies are under the same root-CA or is it possible to define different
trust anchors by distributing root certificates? Or do I need a cross-path
mechanism to deal with this problem?
> proxy2proxy authentication is usually done by TLS.
>
> The problem is that both proxies use different nonce to authenticate.
> You can try to set the secret on both proxies:
> http://openser.org/docs/modules/0.10.x/auth.html#AEN62
>
> regards
> klaus
>
> Taras Bendik wrote:
>> Situation:
>> client1 ----->openser1 ----> openser2 ---->client2
>> Both openser have same accounts (user/pass)
>>
>> When im not using proxy authentification it works ok.
>> If i use it it gives me 407
>>
>> i have tried to use following
>> http://www.voice-system.ro/docs/uac/ar01s06.html#ex_auth
>>
>> and always goes executing this part
>> if (isflagset(7)) {
>> t_reply("503","Authentication failed");
>> break;
>> }
>>
>> I look at ngrep log, and it is some thing like this
>> ser1 -> ser2 INVITE
>> ser2 -> ser1 AUTH Required
>> ser1 -> ser2 INVITE with auth
>> ser2 -> ser1 AUTH Required
>> ser1 -> ser2 INVITE with auth
>> ser2 -> ser1 AUTH Required
>> It seems to me that openser1 cannot authentificate on openser2.
>>
>>
>> Thanks in advance
>>
>>
>>
>> _______________________________________________
>> Users mailing list
>> Users at openser.org
>> http://openser.org/cgi-bin/mailman/listinfo/users
>>
>>
>
>
> _______________________________________________
> Users mailing list
> Users at openser.org
> http://openser.org/cgi-bin/mailman/listinfo/users
>
>
More information about the Users
mailing list