Is there any why that when some one calls from other sip to my ser server with some kind of prefix and if any call come with that prefix allow him to call my sip users. Only sip users not my PSTN gateway.<br><br>thanks<br>
arun<br><br><div><span class="gmail_quote">On 5/28/07, <b class="gmail_sendername">Andrey Kuprianov</b> <<a href="mailto:andrey.kouprianov@gmail.com">andrey.kouprianov@gmail.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Well, if you want EVERYONE to be able to call to SER-A, then why need<br>authentication? Just remove it for INVITE requests :)<br><br>On 5/28/07, Arun Kumar <<a href="mailto:arunvoip@gmail.com">arunvoip@gmail.com</a>> wrote:
<br>> Hi<br>><br>> thanks for your reply. When user from SER -B calls they get Auth. required<br>> error (call rejected). Actually I don't want to peer two SER server. I want<br>> any one can call my users on SER -A so I don't know the IP of calling sip
<br>> service so I can't make use of trusted table.<br>><br>> please guide on this scenario.<br>><br>> thanks<br>> arun<br>><br>><br>> On 5/28/07, Andrey Kuprianov <<a href="mailto:andrey.kouprianov@gmail.com">
andrey.kouprianov@gmail.com</a> > wrote:<br>> > You didnt specify, what happens to the call. Does it get rejected?<br>> Timeout?<br>> ><br>> > Usually, if I want to peer 2 SERs, I use permissions module,
i.e.<br>> > allow_trusted() function must be used in order to allow incoming calls<br>> > from a certain IP. Take a look at Getting Started doc inside the NAT<br>> > handling section.<br>> ><br>> > Anyway, SER-B doesnt use database, which means it does not care about
<br>> > authentication. This is why call from SER-A can go thorugh. On the<br>> > other hand, SER-A uses database and so it will also use proper<br>> > authentication methods. As long as SER-B's IP is not present in the
<br>> > 'trusted' table of MySQL, SER-A will keep on rejecting your calls.<br>> ><br>> > On 5/28/07, Arun Kumar < <a href="mailto:arunvoip@gmail.com">arunvoip@gmail.com</a>> wrote:<br>> > > Hi
<br>> > ><br>> > > I've configure two ser box in my local network:<br>> > > 1. one box with mysql auth (SER A)<br>> > > 2. without any auth (just make install) (SER B)<br>> > >
<br>> > > in both boxes 2-2 users are registered and they are able to call each<br>> other.<br>> > ><br>> > > my SER A users are able to call SER B user (sip:2001@SER-B) but SER B<br>> user
<br>> > > can't call SER A (sip:3001@SER-A) user. here is my config file for SER A<br>> > > box:<br>> > ><br>> > > ------------------<br>> > > debug=5<br>> > > fork=no
<br>> > > log_stderror=yes<br>> > > listen=<a href="http://176.249.2.69">176.249.2.69</a> # INSERT YOUR IP ADDRESS HERE<br>> > > port=5060<br>> > > children=4<br>> > ><br>> > > dns=no
<br>> > > rev_dns=no<br>> > > fifo="/tmp/ser_fifo"<br>> > > fifo_db_url="mysql://ser:heslo@localhost /ser"<br>> > ><br>> > > loadmodule "/usr/local/lib/ser/modules/mysql.so"
<br>> > > loadmodule "/usr/local/lib/ser/modules/sl.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/tm.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/rr.so"
<br>> > > loadmodule "/usr/local/lib/ser/modules/maxfwd.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/usrloc.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/registrar.so"
<br>> > > loadmodule "/usr/local/lib/ser/modules/auth.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/auth_db.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/uri.so"
<br>> > > loadmodule "/usr/local/lib/ser/modules/uri_db.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/domain.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/nathelper.so"
<br>> > > loadmodule "/usr/local/lib/ser/modules/avpops.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/textops.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/mediaproxy.so"
<br>> > > loadmodule "/usr/local/lib/ser/modules/permissions.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/acc.so"<br>> > > loadmodule "/usr/local/lib/ser/modules/xlog.so"
<br>> > ><br>> > > modparam("auth_db|uri_db|usrloc", "db_url", "<br>> > > mysql://ser:heslo@localhost/ser")<br>> > > modparam("auth_db", "calculate_ha1", 1)
<br>> > > modparam("auth_db", "password_column", "password")<br>> > > modparam("usrloc", "db_mode", 2)<br>> > > modparam("rr", "enable_full_lr", 1)
<br>> > > route {<br>> > ><br>> > > #<br>> > ><br>> -----------------------------------------------------------------<br>> > > # Sanity Check Section<br>> > > #
<br>> > ><br>> -----------------------------------------------------------------<br>> > > if (!mf_process_maxfwd_header("10")) {<br>> > > sl_send_reply("483", "Too Many Hops");
<br>> > > break;<br>> > > };<br>> > ><br>> > > if (msg:len > max_len) {<br>> > > sl_send_reply("513", "Message Overflow");<br>> > > break;
<br>> > > };<br>> > ><br>> > > #<br>> > ><br>> -----------------------------------------------------------------<br>> > > # Record Route Section<br>> > > #<br>
> > ><br>> -----------------------------------------------------------------<br>> > > if (method!="REGISTER") {<br>> > > record_route();<br>> > > };<br>> > >
<br>> > > #<br>> > ><br>> -----------------------------------------------------------------<br>> > > # Loose Route Section<br>> > > #<br>> > ><br>> -----------------------------------------------------------------
<br>> > > if (loose_route()) {<br>> > ><br>> > > if ((method=="INVITE" || method=="REFER") && !has_totag()) {<br>> > > sl_send_reply("403", "Forbidden Cant cross 1st bridge");
<br>> > > break;<br>> > > };<br>> > ><br>> > > route(1);<br>> > > break;<br>> > > };<br>> > ><br>> > > #<br>> > >
<br>> -----------------------------------------------------------------<br>> > > # Call Type Processing Section<br>> > > #<br>> > ><br>> -----------------------------------------------------------------
<br>> > > if (uri!=myself) {<br>> > > route(1);<br>> > > break;<br>> > > };<br>> > ><br>> > > if (method=="ACK") {<br>> > > route(1);
<br>> > > break;<br>> > > } if (method=="INVITE") {<br>> > > route(3);<br>> > > break;<br>> > > } else if (method=="REGISTER") {<br>> > > route(2);
<br>> > > break;<br>> > > };<br>> > ><br>> > > lookup("aliases");<br>> > > if (uri!=myself) {<br>> > > route(1);<br>> > > break;<br>
> > > };<br>> > ><br>> > > if (!lookup("location")) {<br>> > > sl_send_reply("404", "User Not Found");<br>> > > break;<br>> > > };
<br>> > ><br>> > > route(1);<br>> > > }<br>> > ><br>> > > route[1] {<br>> > ><br>> > > #<br>> > ><br>> -----------------------------------------------------------------
<br>> > > # Default Message Handler<br>> > > #<br>> > ><br>> -----------------------------------------------------------------<br>> > > if (!t_relay()) {<br>> > > sl_reply_error();
<br>> > > };<br>> > > }<br>> > ><br>> > > route[2] {<br>> > ><br>> > > #<br>> > ><br>> -----------------------------------------------------------------
<br>> > > # REGISTER Message Handler<br>> > > #<br>> > ><br>> ----------------------------------------------------------------<br>> > > sl_send_reply("100", "Trying");
<br>> > ><br>> > > if (!www_authorize("","subscriber")) {<br>> > > www_challenge("","1");<br>> > > break;<br>> > > };<br>> > >
<br>> > > if (!check_to()) {<br>> > > sl_send_reply("401", "Unauthorized");<br>> > > break;<br>> > > };<br>> > ><br>> > > consume_credentials();
<br>> > ><br>> > > if (!save("location")) {<br>> > > sl_reply_error();<br>> > > };<br>> > > }<br>> > ><br>> > > route[3] {<br>> > > #
<br>> > ><br>> -----------------------------------------------------------------<br>> > > # INVITE Message Handler<br>> > > #<br>> > ><br>> -----------------------------------------------------------------
<br>> > ><br>> > > if (!proxy_authorize("","subscriber")) {<br>> > > proxy_challenge("","1");<br>> > > break;<br>> > > } else if (!check_from()) {
<br>> > > sl_send_reply("403", "Use From=ID");<br>> > > break;<br>> > > };<br>> > ><br>> > > consume_credentials();<br>> > ><br>> > > lookup("aliases");
<br>> > > if (uri!=myself) {<br>> > > route(1);<br>> > > break;<br>> > > };<br>> > ><br>> > > if (!lookup("location")) {<br>> > > sl_send_reply("404", "User Not Found");
<br>> > > break;<br>> > > };<br>> > ><br>> > > route(1);<br>> > > }<br>> > ><br>> > ><br>> > > -------------<br>> > > please guide me how to do this.
<br>> > ><br>> > > thanks<br>> > ><br>> > > arun<br>> > ><br>> > > _______________________________________________<br>> > > Serusers mailing list<br>> > >
<a href="mailto:Serusers@lists.iptel.org">Serusers@lists.iptel.org</a><br>> > > <a href="http://lists.iptel.org/mailman/listinfo/serusers">http://lists.iptel.org/mailman/listinfo/serusers</a><br>> > ><br>
> > ><br>> > _______________________________________________<br>> > Serusers mailing list<br>> > <a href="mailto:Serusers@lists.iptel.org">Serusers@lists.iptel.org</a><br>> > <a href="http://lists.iptel.org/mailman/listinfo/serusers">
http://lists.iptel.org/mailman/listinfo/serusers</a><br>> ><br>><br>><br>_______________________________________________<br>Serusers mailing list<br><a href="mailto:Serusers@lists.iptel.org">Serusers@lists.iptel.org
</a><br><a href="http://lists.iptel.org/mailman/listinfo/serusers">http://lists.iptel.org/mailman/listinfo/serusers</a><br></blockquote></div><br>