H Bruce,
Bruce Bauman wrote:
The SER project has recently added dns cache support and STUN support. I
have interest in both of these features.
I'm not convinced that DNS cache is something to be placed inside the
proxy - there a lot of implementations for DNS servers (with caching)
and configuring a dedicated one for your SIP platform will solve the
problem. Otherwise will end implementing a lot of stuff not related to
SIP in the proxy (like DB engines, file system and whatever else).
But I do agree that we need to stick to the roadmap and have the DNS
black list in place (for malicious or protected IPs). Also a system of
dynamically populating this list based on runtime experience - hosts
generating 408 with no reply, declined TCP connections, etc..
For STUN, again there are a lot of external implementations. I know that
the RFC says that ideally the STUN traffic should be sent on the same
port as signalling, but not sure how realistic (read "how used") is it.
regards,
bogdan
_______________________________________________
Devel mailing list
[email protected]
http://openser.org/cgi-bin/mailman/listinfo/devel
