Asterisk Secure call TLS SRTP
本帖最後由 harold 於 2018-3-1 13:54 編輯
因為GSWave 有無多免費好用嘅功能, 所以加咗啲嘢係Asterisk Server 到, 可以比大家參考下
我係用Asterisk 13.13.1, 唔洗再安裝其它嘢
https://wiki.asterisk.org/wiki/d ... re+Calling+Tutorial
no additional install in asterisk 13.13.1
mkdir /etc/asterisk/certkey
Next, use the "ast_tls_cert" script in the "contrib/scripts" Asterisk source directory to make a self-signed certificate authority and an Asterisk certificate.
./ast_tls_cert -C Your_Domain -O "Your Name" -d /etc/asterisk/certkey
Enter pass phrase for /etc/asterisk/certkey/ca.key:Your_Password
./ast_tls_cert -m client -c /etc/asterisk/certkey/ca.crt -k /etc/asterisk/certkey/ca.key -C Your_Domain -O "Your_Name" -d /etc/asterisk/certkey -o YourSIPClient
chmod -R -f 755 cert/
sip.conf
externtlsport = 5061
tlsenable=yes
tlsbindaddr=0.0.0.0:5061
tlscertfile=/etc/asterisk/certkey/asterisk.pem
tlsprivatekey=/etc/asterisk/certkey/asterisk.key
tlscafile=/etc/asterisk/certkey/ca.crt
tlscapath=/etc/asterisk/certkey/
tlscipher=ALL
tlsclientmethod=tlsv1
[User]
transport=tls
encryption=yes
�
Check User “ asterisk -rx "sip show peer (User)”
Prim.Transp. : TLS
Allowed.Trsp : TLS
OBI TLS 設定
唔知點解OBI SRTP 設定咗都唔得,响完一pickup 就線,估計係唔係好support,所以放棄!
Asterisk sip.conf
transport=tls
encryption=no ;SRTP 設定但唔work
ignorecryptolifetime=yes
OBI110
Service Provider -> ITS Profile SIP -> Proxy ServerTransport->TLS |
發表於 2018-2-28 18:26
| 
