Hi, </br> </br>    I'm setting up ser so that unregistered users can't make any calls to anybody. I have configured to allow all other domains to make a call to my local users. But when my local user that is unregistered it can still make calls to other local users. How would I do to block him totally? </br> </br>here is my ser.cfg: </br> </br>debug=3 </br>fork=yes </br>log_stderror=yes </br> </br>listen=202.84.24.107 </br>port=5060 </br>children=4 </br> </br>dns=no </br>rev_dns=no </br> </br>fifo="/tmp/ser_fifo" </br>fifo_db_url="mysql://ser:heslo@localhost/ser" </br> </br>alias=sip.philonline.com </br> </br>#load module part </br> </br>loadmodule "/usr/local/lib/ser/modules/mysql.so" </br>loadmodule "/usr/local/lib/ser/modules/domain.so" </br>loadmodule "/usr/local/lib/ser/modules/sl.so" </br>loadmodule "/usr/local/lib/ser/modules/tm.so" </br>loadmodule "/usr/local/lib/ser/modules/rr.so" </br>loadmodule "/usr/local/lib/ser/modules/maxfwd.so" </br>loadmodule "/usr/local/lib/ser/modules/usrloc.so" </br>loadmodule "/usr/local/lib/ser/modules/registrar.so" </br>loadmodule "/usr/local/lib/ser/modules/auth.so" </br>loadmodule "/usr/local/lib/ser/modules/auth_db.so" </br>loadmodule "/usr/local/lib/ser/modules/uri.so" </br>loadmodule "/usr/local/lib/ser/modules/uri_db.so" </br>loadmodule "/usr/local/lib/ser/modules/mediaproxy.so" </br>loadmodule "/usr/local/lib/ser/modules/nathelper.so" </br>loadmodule "/usr/local/lib/ser/modules/textops.so" </br>loadmodule "/usr/local/lib/ser/modules/acc.so" </br>loadmodule "/usr/local/lib/ser/modules/permissions.so" </br> </br>#module parameter setup </br> </br>modparam("rr", "enable_full_lr", 1) </br>modparam("auth_db|uri_db|usrloc|domain|permissions", "db_url", "mysql://ser:heslo@localhost/ser") </br>modparam("auth_db", "calculate_ha1", 1) </br>modparam("auth_db", "password_column", "password") </br>modparam("usrloc", "db_mode", 2) </br> </br>modparam("nathelper", "rtpproxy_disable", 1) </br>modparam("nathelper", "natping_interval", 0) </br> </br>modparam("mediaproxy", "natping_interval", 30) </br>modparam("mediaproxy", "mediaproxy_socket", "/var/run/mediaproxy.sock") </br>modparam("mediaproxy", "sip_asymmetrics", "/usr/local/etc/ser/sip-clients") </br>modparam("mediaproxy", "rtp_asymmetrics", "/usr/local/etc/ser/rtp-clients") </br>modparam("registrar", "nat_flag", 6) </br> </br>modparam("acc", "log_level", 2) </br>modparam("acc", "log_fmt", "cdfimorstup") </br>modparam("acc", "report_ack", 1) </br>#modparam("acc", "failed_transactions", 1) </br>modparam("acc", "log_flag", 1) </br>#modparam("acc", "report_cancels", 1) </br>modparam("acc", "db_flag", 1) </br>modparam("acc", "db_missed_flag", 3) </br>modparam("acc", "db_url", "mysql://ser:heslo@localhost/ser") </br> </br>modparam("uri_db", "uri_table", "uri") </br>modparam("uri_db", "uri_user_column", "username") </br>modparam("uri_db", "uri_domain_column", "domain") </br> </br>modparam("domain", "db_mode", 1) </br>modparam("domain", "domain_table", "domain") </br>modparam("domain", "domain_col", "domain") </br> </br>modparam("permissions", "default_allow_file", "/usr/local/etc/ser/allow.permissions") </br>modparam("permissions", "default_deny_file", "/usr/local/etc/ser/deny.permissions") </br> </br>#our routing logic </br> </br>route { </br> </br>        if (!mf_process_maxfwd_header("10")) { </br>                sl_send_reply("483", "Too many hops"); </br>                break; </br>        }; </br> </br>        if (msg:len &#62; max_len) { </br>                sl_send_reply("513", "Message overflow"); </br>                break; </br>        }; </br> </br> </br> </br>###record route#### </br> </br>        if (method=="INVITE" &amp;&amp; client_nat_test("3")) { </br>                record_route_preset("202.84.24.107:5060;nat=yes"); </br>        } else if (method!="REGISTER") { </br>                record_route(); </br>        }; </br> </br>###call tear down section### </br>        if (method=="BYE" || method=="CANCEL") { </br>                end_media_session(); </br>        }; </br> </br> </br>###accounting### </br> </br>        if ((!has_totag() &amp;&amp; (method=="INVITE" || method=="ACK")) || (method=="BYE")) { </br>                setflag(1); </br>        }; </br> </br>###loose route### </br> </br>        if (loose_route()) { </br> </br>                if (has_totag() &amp;&amp; (method=="INVITE" || method=="ACK")) { </br>                        if (client_nat_test("3") || search("^Route:.*;nat=yes")) { </br>                                setflag(6); </br>                                use_media_proxy(); </br>                        }; </br>                }; </br> </br>                route(1); </br>                break; </br>        }; </br> </br>###call type processing### </br> </br>        if (uri!=myself) { </br>                route(1); </br>                break; </br>        }; </br> </br> </br>        if (uri==myself) { </br> </br> </br>                if (method=="CANCEL") { </br>                        route(3); </br>                        break; </br>                } else if (method=="INVITE") { </br>                        route(3); </br>                        break; </br>                } else  if (method=="REGISTER") { </br>                                route(2); </br>                                break; </br>                }; </br> </br> </br>                lookup("aliases"); </br>                if (uri!=myself) { </br>                        route(1); </br>                        break; </br>                }; </br> </br>                if (!lookup("location")) { </br>                        sl_send_reply("404", "User not found"); </br>                        break; </br>                }; </br>        }; </br> </br>        route(1); </br>} </br> </br>##Default message handler## </br>route[1] { </br> </br>        t_on_reply("1"); </br> </br>        if (!t_relay()) { </br> </br>                if (method=="INVITE" || method=="ACK") { </br>                        end_media_session(); </br>                }; </br> </br>                sl_reply_error(); </br>        }; </br>} </br> </br>##Register message handler## </br>route[2] { </br> </br>        sl_send_reply("100", "Trying"); </br> </br>        if (!search("^Contact:\ +\*") &amp;&amp; client_nat_test("7")) { </br>                setflag(6); </br>                fix_nated_register(); </br>                force_rport(); </br>        }; </br> </br>        if (!www_authorize("sip.philonline.com","subscriber")) { </br>                www_challenge("sip.philonline.com","0"); </br>                break; </br>        }; </br> </br>        if (!check_to()) { </br>                sl_send_reply("401", "You are Unauthorized"); </br>                break; </br>        }; </br> </br>        consume_credentials(); </br> </br>        if (!save("location")) { </br>                sl_reply_error(); </br>        }; </br>} </br> </br>##INVITE message Handler## </br>route[3] </br>        { </br> </br>        if (client_nat_test("3")) { </br>                setflag(7); </br>                force_rport(); </br>                fix_nated_contact(); </br>        }; </br> </br> </br>        if (!search("To: .*@sip.philonline.com")) { </br> </br>        if (!proxy_authorize("","subscriber")) { </br>                proxy_challenge("", "0"); </br>                break; </br>         };  </br> </br>        if (!check_from() &amp;&amp; method=="INVITE") { </br>                sl_send_reply("403", "User From=ID"); </br>                break; </br>        }; </br> </br>        }; </br> </br>        lookup("aliases"); </br>        if (uri!=myself) { </br>                route(1); </br>                break; </br>        }; </br> </br>        if (!lookup("location")) { </br>                sl_send_reply("404", "User not found"); </br>                break; </br>        }; </br> </br>        if (method=="CANCEL") { </br>                route(1); </br>                break; </br>        }; </br> </br>        consume_credentials(); </br> </br>        if (isflagset(6) || isflagset(7)) { </br>                use_media_proxy(); </br>        }; </br> </br>        route(1); </br>} </br> </br>onreply_route[1] { </br> </br>        if (isflagset(6) || isflagset(7) &amp;&amp; (status=~"(180)|(183)|2[0-9][0-9]")) { </br> </br>                if (!search("^Content-Length:\ +0")) { </br>                        use_media_proxy(); </br>                }; </br>        }; </br> </br>        if (client_nat_test("1")) { </br>                fix_nated_contact(); </br>        }; </br> </br>} </br> </br>Thanks, </br>--ryan</br></br>Ryan Pagquil</br>Infodyne Inc. (www.philonline.com)</br>Tel. (632)-6870715