Re: [OpenSIPS-Users] n00b SIP question

2016-06-23 Thread Jim DeVito 
For ease of use for a beginner use vanilla Asterisk. Soft phones like bria for the clients. As always good luck and buy the book. 
On Jun 23, 2016 6:32 PM, Ozz Nixon  wrote:Hello, I have read this mail list for months, everything is way above me – but, I am ready to jump in. I have a twilio account, I have static COMCAST business class (Deluxe), not in bridged mode. What are the steps/products I should install on a Linux server to do my own VoIP? Design goal, 1 SIP phone in the same 10.1.0.x network, 1 SIP phone in Georgia, and 1 SIP phone in Philadelphia. Goal is to get an understanding, and migrate my 8 or 9 DIDs to inhouse, have a nice DELL (16GB RAM, 3TB of disk space), dual FAST-E NICs. · I gave I a whirl a couple weeks ago, with one of those “all-in-one” projects, like “Sip on a stick”. Migrated 2 DIDs without issue adding 3rd, and 4th brought the whole environment down where none of the DIDs worked. I am interested in just doing it module by module, product by product until I have this understood (like when do I need STUN or will I ever, etc). Thanks guys!Ozz___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

[OpenSIPS-Users] n00b SIP question

2016-06-23 Thread Ozz Nixon 
Hello,

 

I have read this mail list for months, everything is way above 
me – but, I am ready to jump in. I have a twilio account, I have static COMCAST 
business class (Deluxe), not in bridged mode.

 

What are the steps/products I should install on a Linux server 
to do my own VoIP?

 

Design goal, 1 SIP phone in the same 10.1.0.x network, 1 SIP phone in Georgia, 
and 1 SIP phone in Philadelphia. Goal is to get an understanding, and migrate 
my 8 or 9 DIDs to inhouse, have a nice DELL (16GB RAM, 3TB of disk space), dual 
FAST-E NICs.

 

* I gave I a whirl a couple weeks ago, with one of those “all-in-one” 
projects, like “Sip on a stick”. Migrated 2 DIDs without issue adding 3rd, and 
4th brought the whole environment down where none of the DIDs worked.

 

I am interested in just doing it module by module, product by product until I 
have this understood (like when do I need STUN or will I ever, etc).

 

Thanks guys!

Ozz

___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread sevpal 
Take a look at the “fingerprint:” line. 

From: John Nash 
Sent: Thursday, June 23, 2016 3:42 PM
To: OpenSIPS users mailling list 
Subject: Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

Actually the issue is i hear no audio on either side and just after session 
progress (I guess when media starts coming from remote media server) i see 
error "SRTP output wanted, but no crypto suite was negotiated" 


I had also checked media logs i could see RTP packets being sent from 
freeswitch to RTPengine IP but there was no packet at all just after that. 
Ideally after RTP packet from freeswitch to rtpengine, Rtpengine should send 
that packet to browser using wss?

On Fri, Jun 24, 2016 at 1:05 AM, Eric Tamme  wrote:

  So - i dont see a problem here - Chrome is getting UDP/TLS/RTP/SAVPF and 
Freeswitch is getting RTP/AVP.  Freeswitch responded to the offer in the invite 
with an answer in the 183, and in the 200.  What is the failure you are seeing, 
and where is it happening (in freeswitch? in the browser?)

  The only thing that looks bad is that you are retransmitting the ACK which FS 
either ... doesnt like, or is never getting,  because it keeps retransmitting 
the 200, which is why you get a 481 when you send BYE.

  -Eric 



  On 06/23/2016 01:24 PM, John Nash wrote:

OK here is the log 
https://gist.github.com/johnnash13/0d2cb5238f3551cd3a8c6b4e638dd744 

Sorry took me a while to convert wireshark trace to text file.

My freeswitch is running on private IP (127.0.0.1) and opensips I run on 
both public and private so that for outside world opensips is the only public 
IP they see. In proxy log I pasted Opensips ===> Freeswitch logs and back.






On Fri, Jun 24, 2016 at 12:43 AM, Eric Tamme  wrote:

  No - it's annoying to look at a trace that's had information removed and 
try and piece together whats happening.  Your paranoid side is wrong, sorry.

  -Eric 



  On 06/23/2016 01:06 PM, Patrick Wakano wrote:

my paranoic side would recommend to hide/change private informations, 
specially any authentication line that might appear... this is certainly a sort 
of social engineering threat we should worry...

better be safe than sorry



On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme  wrote:

  I mean you can use a private gist, but you will be publishing the 
link in a public email list.  In general I personally dont believe revealing ip 
addresses etc. is any problem - to put my money where my mouth is here is a 
gist link to an unaltered SIP trace on my server :)

  https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52

  -Eric 



  On 06/23/2016 12:23 PM, John Nash wrote:

Ok i am ready with logs. About gist may I use private option as 
traces have our IPs, user

On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme  
wrote:

  Hey John,

  Please paste a full UNALTERED sip trace into a gist 
(gist.github.com) from the proxy servers perspective and provide a link so that 
we can see what comes in, and what goes out from both sides.

  EG: ngrep -qtd any -W byline port 5060

  This will show us the traffic that is leaving the proxy destined 
for the Freeswitch box, and what the freeswitch box sends back.

  Also - you can look in your browsers console log and provide the 
SIP trace from there in a seperate gist, so that we can see what opensips sends 
back up to your browser.

  -Eric 



Am I using correct sip.js example? I copied it to my server and 
accessing it using https: (used letsencrypt)

On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme  
wrote:

  1. I would suggest using SIP.js - 
https://github.com/onsip/SIP.js it is a much more active project that sipml5.

  2. Im guessing that you are not properly passing flags to 
RTPEngine.  If you want to have DTLS-SRTP between the browser, and plain 
RTP/AVP between RTPEngine and freeswitch, you need to "offer" rtp/avp to 
freeswitch, and "answer" dtls-srtp back up to the browser.

  the offer to freeswitch would be:  

$var(rtpengine_flags) = "RTP/AVP replace-session-connection 
replace-origin ICE=remove";

and the answer back up to the browswer would be:


$var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";
  -Eric 




  On 06/23/2016 08:20 AM, John Nash wrote:

I am following 
http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and trying to 
test a call  

sipml5 --->Opensips + rtpengine > SIP end 
point (Freeswitch)


But I do not have any audio on both sides. I see this error 
at rtpengine log "SRTP output wanted, but no crypto suite was negotiated"

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread sevpal 
Hi, the rtpengine cannot negotiate SRTP between the two points, both must 
support the same cryptography and protocol. eg; SRTP to SRTP , DTLS/SRTP to 
DTLS/SRTP cipher 128 to 128 and 256 to 256.

You can print the request body ($rb) on the INVITE with “application/sdp” and 
visually compare the exchange, do this on offer and answer.

From: John Nash 
Sent: Thursday, June 23, 2016 3:42 PM
To: OpenSIPS users mailling list 
Subject: Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

Actually the issue is i hear no audio on either side and just after session 
progress (I guess when media starts coming from remote media server) i see 
error "SRTP output wanted, but no crypto suite was negotiated" 


I had also checked media logs i could see RTP packets being sent from 
freeswitch to RTPengine IP but there was no packet at all just after that. 
Ideally after RTP packet from freeswitch to rtpengine, Rtpengine should send 
that packet to browser using wss?

On Fri, Jun 24, 2016 at 1:05 AM, Eric Tamme  wrote:

  So - i dont see a problem here - Chrome is getting UDP/TLS/RTP/SAVPF and 
Freeswitch is getting RTP/AVP.  Freeswitch responded to the offer in the invite 
with an answer in the 183, and in the 200.  What is the failure you are seeing, 
and where is it happening (in freeswitch? in the browser?)

  The only thing that looks bad is that you are retransmitting the ACK which FS 
either ... doesnt like, or is never getting,  because it keeps retransmitting 
the 200, which is why you get a 481 when you send BYE.

  -Eric 



  On 06/23/2016 01:24 PM, John Nash wrote:

OK here is the log 
https://gist.github.com/johnnash13/0d2cb5238f3551cd3a8c6b4e638dd744 

Sorry took me a while to convert wireshark trace to text file.

My freeswitch is running on private IP (127.0.0.1) and opensips I run on 
both public and private so that for outside world opensips is the only public 
IP they see. In proxy log I pasted Opensips ===> Freeswitch logs and back.






On Fri, Jun 24, 2016 at 12:43 AM, Eric Tamme  wrote:

  No - it's annoying to look at a trace that's had information removed and 
try and piece together whats happening.  Your paranoid side is wrong, sorry.

  -Eric 



  On 06/23/2016 01:06 PM, Patrick Wakano wrote:

my paranoic side would recommend to hide/change private informations, 
specially any authentication line that might appear... this is certainly a sort 
of social engineering threat we should worry...

better be safe than sorry



On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme  wrote:

  I mean you can use a private gist, but you will be publishing the 
link in a public email list.  In general I personally dont believe revealing ip 
addresses etc. is any problem - to put my money where my mouth is here is a 
gist link to an unaltered SIP trace on my server :)

  https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52

  -Eric 



  On 06/23/2016 12:23 PM, John Nash wrote:

Ok i am ready with logs. About gist may I use private option as 
traces have our IPs, user

On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme  
wrote:

  Hey John,

  Please paste a full UNALTERED sip trace into a gist 
(gist.github.com) from the proxy servers perspective and provide a link so that 
we can see what comes in, and what goes out from both sides.

  EG: ngrep -qtd any -W byline port 5060

  This will show us the traffic that is leaving the proxy destined 
for the Freeswitch box, and what the freeswitch box sends back.

  Also - you can look in your browsers console log and provide the 
SIP trace from there in a seperate gist, so that we can see what opensips sends 
back up to your browser.

  -Eric 



Am I using correct sip.js example? I copied it to my server and 
accessing it using https: (used letsencrypt)

On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme  
wrote:

  1. I would suggest using SIP.js - 
https://github.com/onsip/SIP.js it is a much more active project that sipml5.

  2. Im guessing that you are not properly passing flags to 
RTPEngine.  If you want to have DTLS-SRTP between the browser, and plain 
RTP/AVP between RTPEngine and freeswitch, you need to "offer" rtp/avp to 
freeswitch, and "answer" dtls-srtp back up to the browser.

  the offer to freeswitch would be:  

$var(rtpengine_flags) = "RTP/AVP replace-session-connection 
replace-origin ICE=remove";

and the answer back up to the browswer would be:


$var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";
  -Eric 




  On 06/23/2016 08:20 AM, John Nash wrote:

I am following

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread John Nash 
Actually the issue is i hear no audio on either side and just after session
progress (I guess when media starts coming from remote media server) i see
error  "SRTP output wanted, but no crypto suite was negotiated"

I had also checked media logs i could see RTP packets being sent from
freeswitch to RTPengine IP but there was no packet at all just after that.
Ideally after RTP packet from freeswitch to rtpengine, Rtpengine should
send that packet to browser using wss?

On Fri, Jun 24, 2016 at 1:05 AM, Eric Tamme  wrote:

> So - i dont see a problem here - Chrome is getting UDP/TLS/RTP/SAVPF and
> Freeswitch is getting RTP/AVP.  Freeswitch responded to the offer in the
> invite with an answer in the 183, and in the 200.  What is the failure you
> are seeing, and where is it happening (in freeswitch? in the browser?)
>
> The only thing that looks bad is that you are retransmitting the ACK which
> FS either ... doesnt like, or is never getting,  because it keeps
> retransmitting the 200, which is why you get a 481 when you send BYE.
>
> -Eric
>
>
> On 06/23/2016 01:24 PM, John Nash wrote:
>
> OK here is the log
> https://gist.github.com/johnnash13/0d2cb5238f3551cd3a8c6b4e638dd744
>
> Sorry took me a while to convert wireshark trace to text file.
>
> My freeswitch is running on private IP (127.0.0.1) and opensips I run on
> both public and private so that for outside world opensips is the only
> public IP they see. In proxy log I pasted Opensips ===> Freeswitch logs and
> back.
>
>
>
>
>
>
> On Fri, Jun 24, 2016 at 12:43 AM, Eric Tamme  wrote:
>
>> No - it's annoying to look at a trace that's had information removed and
>> try and piece together whats happening.  Your paranoid side is wrong, sorry.
>>
>> -Eric
>>
>>
>> On 06/23/2016 01:06 PM, Patrick Wakano wrote:
>>
>> my paranoic side would recommend to hide/change private informations,
>> specially any authentication line that might appear... this is certainly a
>> sort of social engineering threat we should worry...
>> better be safe than sorry
>>
>>
>> On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme < 
>> e...@uphreak.com> wrote:
>>
>>> I mean you can use a private gist, but you will be publishing the link
>>> in a public email list.  In general I personally dont believe revealing ip
>>> addresses etc. is any problem - to put my money where my mouth is here is a
>>> gist link to an unaltered SIP trace on my server :)
>>>
>>> https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52
>>>
>>> -Eric
>>>
>>>
>>> On 06/23/2016 12:23 PM, John Nash wrote:
>>>
>>> Ok i am ready with logs. About gist may I use private option as traces
>>> have our IPs, user
>>>
>>> On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme < 
>>> e...@uphreak.com> wrote:
>>>
 Hey John,

 Please paste a full UNALTERED sip trace into a gist (gist.github.com)
 from the proxy servers perspective and provide a link so that we can see
 what comes in, and what goes out from both sides.

 EG: ngrep -qtd any -W byline port 5060

 This will show us the traffic that is leaving the proxy destined for
 the Freeswitch box, and what the freeswitch box sends back.

 Also - you can look in your browsers console log and provide the SIP
 trace from there in a seperate gist, so that we can see what opensips sends
 back up to your browser.

 -Eric


 Am I using correct sip.js example? I copied it to my server and
 accessing it using https: (used letsencrypt)

 On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme < 
 e...@uphreak.com> wrote:

> 1. I would suggest using SIP.js - 
> https://github.com/onsip/SIP.js it is a much more active project that
> sipml5.
>
> 2. Im guessing that you are not properly passing flags to RTPEngine.
> If you want to have DTLS-SRTP between the browser, and plain RTP/AVP
> between RTPEngine and freeswitch, you need to "offer" rtp/avp to
> freeswitch, and "answer" dtls-srtp back up to the browser.
>
> the offer to freeswitch would be:
>
> $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
> replace-origin ICE=remove";
>
>
> and the answer back up to the browswer would be:
>
> $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";
>
>
> -Eric
>
>
>
> On 06/23/2016 08:20 AM, John Nash wrote:
>
> I am following
> 
> http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and
> trying to test a call
>
> sipml5 --->Opensips + rtpengine > SIP end point
> (Freeswitch)
>
> But I do not have any audio on both sides. I see this error at
> rtpengine log "SRTP output wanted, but no crypto suite was negotiated"
>
> Anyone tested

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread Eric Tamme 
So - i dont see a problem here - Chrome is getting UDP/TLS/RTP/SAVPF and 
Freeswitch is getting RTP/AVP.  Freeswitch responded to the offer in the 
invite with an answer in the 183, and in the 200.  What is the failure 
you are seeing, and where is it happening (in freeswitch? in the browser?)


The only thing that looks bad is that you are retransmitting the ACK 
which FS either ... doesnt like, or is never getting,  because it keeps 
retransmitting the 200, which is why you get a 481 when you send BYE.


-Eric

On 06/23/2016 01:24 PM, John Nash wrote:
OK here is the log 
https://gist.github.com/johnnash13/0d2cb5238f3551cd3a8c6b4e638dd744


Sorry took me a while to convert wireshark trace to text file.

My freeswitch is running on private IP (127.0.0.1) and opensips I run 
on both public and private so that for outside world opensips is the 
only public IP they see. In proxy log I pasted Opensips ===> 
Freeswitch logs and back.







On Fri, Jun 24, 2016 at 12:43 AM, Eric Tamme > wrote:


No - it's annoying to look at a trace that's had information
removed and try and piece together whats happening.  Your paranoid
side is wrong, sorry.

-Eric


On 06/23/2016 01:06 PM, Patrick Wakano wrote:

my paranoic side would recommend to hide/change private
informations, specially any authentication line that might
appear... this is certainly a sort of social engineering threat
we should worry...
better be safe than sorry


On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme > wrote:

I mean you can use a private gist, but you will be publishing
the link in a public email list. In general I personally dont
believe revealing ip addresses etc. is any problem - to put
my money where my mouth is here is a gist link to an
unaltered SIP trace on my server :)

https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52

-Eric


On 06/23/2016 12:23 PM, John Nash wrote:

Ok i am ready with logs. About gist may I use private option
as traces have our IPs, user

On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme
> wrote:

Hey John,

Please paste a full UNALTERED sip trace into a gist
(gist.github.com ) from the
proxy servers perspective and provide a link so that we
can see what comes in, and what goes out from both sides.

EG: ngrep -qtd any -W byline port 5060

This will show us the traffic that is leaving the proxy
destined for the Freeswitch box, and what the freeswitch
box sends back.

Also - you can look in your browsers console log and
provide the SIP trace from there in a seperate gist, so
that we can see what opensips sends back up to your browser.

-Eric



Am I using correct sip.js example? I copied it to my
server and accessing it using https: (used letsencrypt)

On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme
> wrote:

1. I would suggest using SIP.js -
https://github.com/onsip/SIP.js it is a much more
active project that sipml5.

2. Im guessing that you are not properly passing
flags to RTPEngine.  If you want to have DTLS-SRTP
between the browser, and plain RTP/AVP between
RTPEngine and freeswitch, you need to "offer"
rtp/avp to freeswitch, and "answer" dtls-srtp back
up to the browser.

the offer to freeswitch would be:

 $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
replace-origin ICE=remove";

and the answer back up to the browswer would be:

 $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";


-Eric



On 06/23/2016 08:20 AM, John Nash wrote:

I am following
http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2
and trying to test a call

sipml5 --->Opensips + rtpengine >
SIP end point (Freeswitch)

But I do not have any audio on both sides. I see
this error at rtpengine log "SRTP output wanted,
but no crypto suite was negotiated"

Anyone tested this scenario positive?


___
Users mailing list
Users@lists.opensips.org

http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread John Nash 
OK here is the log
https://gist.github.com/johnnash13/0d2cb5238f3551cd3a8c6b4e638dd744

Sorry took me a while to convert wireshark trace to text file.

My freeswitch is running on private IP (127.0.0.1) and opensips I run on
both public and private so that for outside world opensips is the only
public IP they see. In proxy log I pasted Opensips ===> Freeswitch logs and
back.






On Fri, Jun 24, 2016 at 12:43 AM, Eric Tamme  wrote:

> No - it's annoying to look at a trace that's had information removed and
> try and piece together whats happening.  Your paranoid side is wrong, sorry.
>
> -Eric
>
>
> On 06/23/2016 01:06 PM, Patrick Wakano wrote:
>
> my paranoic side would recommend to hide/change private informations,
> specially any authentication line that might appear... this is certainly a
> sort of social engineering threat we should worry...
> better be safe than sorry
>
>
> On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme  wrote:
>
>> I mean you can use a private gist, but you will be publishing the link in
>> a public email list.  In general I personally dont believe revealing ip
>> addresses etc. is any problem - to put my money where my mouth is here is a
>> gist link to an unaltered SIP trace on my server :)
>>
>> https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52
>>
>> -Eric
>>
>>
>> On 06/23/2016 12:23 PM, John Nash wrote:
>>
>> Ok i am ready with logs. About gist may I use private option as traces
>> have our IPs, user
>>
>> On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme < 
>> e...@uphreak.com> wrote:
>>
>>> Hey John,
>>>
>>> Please paste a full UNALTERED sip trace into a gist (gist.github.com)
>>> from the proxy servers perspective and provide a link so that we can see
>>> what comes in, and what goes out from both sides.
>>>
>>> EG: ngrep -qtd any -W byline port 5060
>>>
>>> This will show us the traffic that is leaving the proxy destined for the
>>> Freeswitch box, and what the freeswitch box sends back.
>>>
>>> Also - you can look in your browsers console log and provide the SIP
>>> trace from there in a seperate gist, so that we can see what opensips sends
>>> back up to your browser.
>>>
>>> -Eric
>>>
>>>
>>> Am I using correct sip.js example? I copied it to my server and
>>> accessing it using https: (used letsencrypt)
>>>
>>> On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme < 
>>> e...@uphreak.com> wrote:
>>>
 1. I would suggest using SIP.js - 
 https://github.com/onsip/SIP.js it is a much more active project that
 sipml5.

 2. Im guessing that you are not properly passing flags to RTPEngine.
 If you want to have DTLS-SRTP between the browser, and plain RTP/AVP
 between RTPEngine and freeswitch, you need to "offer" rtp/avp to
 freeswitch, and "answer" dtls-srtp back up to the browser.

 the offer to freeswitch would be:

 $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
 replace-origin ICE=remove";


 and the answer back up to the browswer would be:

 $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";


 -Eric



 On 06/23/2016 08:20 AM, John Nash wrote:

 I am following
 
 http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and
 trying to test a call

 sipml5 --->Opensips + rtpengine > SIP end point
 (Freeswitch)

 But I do not have any audio on both sides. I see this error at
 rtpengine log "SRTP output wanted, but no crypto suite was negotiated"

 Anyone tested this scenario positive?


 ___
 Users mailing 
 listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users



 ___
 Users mailing list
 Users@lists.opensips.org
 http://lists.opensips.org/cgi-bin/mailman/listinfo/users


>>>
>>>
>>> ___
>>> Users mailing 
>>> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>>
>>>
>>>
>>> ___
>>> Users mailing list
>>> Users@lists.opensips.org
>>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>>
>>>
>>
>>
>> ___
>> Users mailing 
>> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>>
>> ___
>> Users mailing list
>> Users@lists.opensips.org
>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>
>
> ___
> Users mailing 
> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>
>

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread Eric Tamme 
No - it's annoying to look at a trace that's had information removed and 
try and piece together whats happening.  Your paranoid side is wrong, sorry.


-Eric

On 06/23/2016 01:06 PM, Patrick Wakano wrote:
my paranoic side would recommend to hide/change private informations, 
specially any authentication line that might appear... this is 
certainly a sort of social engineering threat we should worry...

better be safe than sorry


On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme > wrote:


I mean you can use a private gist, but you will be publishing the
link in a public email list.  In general I personally dont believe
revealing ip addresses etc. is any problem - to put my money where
my mouth is here is a gist link to an unaltered SIP trace on my
server :)

https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52

-Eric


On 06/23/2016 12:23 PM, John Nash wrote:

Ok i am ready with logs. About gist may I use private option as
traces have our IPs, user

On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme > wrote:

Hey John,

Please paste a full UNALTERED sip trace into a gist
(gist.github.com ) from the proxy
servers perspective and provide a link so that we can see
what comes in, and what goes out from both sides.

EG: ngrep -qtd any -W byline port 5060

This will show us the traffic that is leaving the proxy
destined for the Freeswitch box, and what the freeswitch box
sends back.

Also - you can look in your browsers console log and provide
the SIP trace from there in a seperate gist, so that we can
see what opensips sends back up to your browser.

-Eric



Am I using correct sip.js example? I copied it to my server
and accessing it using https: (used letsencrypt)

On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme
> wrote:

1. I would suggest using SIP.js -
https://github.com/onsip/SIP.js it is a much more active
project that sipml5.

2. Im guessing that you are not properly passing flags
to RTPEngine.  If you want to have DTLS-SRTP between the
browser, and plain RTP/AVP between RTPEngine and
freeswitch, you need to "offer" rtp/avp to freeswitch,
and "answer" dtls-srtp back up to the browser.

the offer to freeswitch would be:

 $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
replace-origin ICE=remove";

and the answer back up to the browswer would be:

 $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";


-Eric



On 06/23/2016 08:20 AM, John Nash wrote:

I am following
http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2
and trying to test a call

sipml5 --->Opensips + rtpengine > SIP
end point (Freeswitch)

But I do not have any audio on both sides. I see this
error at rtpengine log "SRTP output wanted, but no
crypto suite was negotiated"

Anyone tested this scenario positive?


___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users




___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users




___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users




___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


___
Users mailing list
Users@lists.opensips.org

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread Patrick Wakano 
my paranoic side would recommend to hide/change private informations,
specially any authentication line that might appear... this is certainly a
sort of social engineering threat we should worry...
better be safe than sorry


On Thu, Jun 23, 2016 at 3:31 PM, Eric Tamme  wrote:

> I mean you can use a private gist, but you will be publishing the link in
> a public email list.  In general I personally dont believe revealing ip
> addresses etc. is any problem - to put my money where my mouth is here is a
> gist link to an unaltered SIP trace on my server :)
>
> https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52
>
> -Eric
>
>
> On 06/23/2016 12:23 PM, John Nash wrote:
>
> Ok i am ready with logs. About gist may I use private option as traces
> have our IPs, user
>
> On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme  wrote:
>
>> Hey John,
>>
>> Please paste a full UNALTERED sip trace into a gist (gist.github.com)
>> from the proxy servers perspective and provide a link so that we can see
>> what comes in, and what goes out from both sides.
>>
>> EG: ngrep -qtd any -W byline port 5060
>>
>> This will show us the traffic that is leaving the proxy destined for the
>> Freeswitch box, and what the freeswitch box sends back.
>>
>> Also - you can look in your browsers console log and provide the SIP
>> trace from there in a seperate gist, so that we can see what opensips sends
>> back up to your browser.
>>
>> -Eric
>>
>>
>> Am I using correct sip.js example? I copied it to my server and accessing
>> it using https: (used letsencrypt)
>>
>> On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme < 
>> e...@uphreak.com> wrote:
>>
>>> 1. I would suggest using SIP.js - 
>>> https://github.com/onsip/SIP.js it is a much more active project that
>>> sipml5.
>>>
>>> 2. Im guessing that you are not properly passing flags to RTPEngine.  If
>>> you want to have DTLS-SRTP between the browser, and plain RTP/AVP between
>>> RTPEngine and freeswitch, you need to "offer" rtp/avp to freeswitch, and
>>> "answer" dtls-srtp back up to the browser.
>>>
>>> the offer to freeswitch would be:
>>>
>>> $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
>>> replace-origin ICE=remove";
>>>
>>>
>>> and the answer back up to the browswer would be:
>>>
>>> $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";
>>>
>>>
>>> -Eric
>>>
>>>
>>>
>>> On 06/23/2016 08:20 AM, John Nash wrote:
>>>
>>> I am following
>>> 
>>> http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and
>>> trying to test a call
>>>
>>> sipml5 --->Opensips + rtpengine > SIP end point
>>> (Freeswitch)
>>>
>>> But I do not have any audio on both sides. I see this error at rtpengine
>>> log "SRTP output wanted, but no crypto suite was negotiated"
>>>
>>> Anyone tested this scenario positive?
>>>
>>>
>>> ___
>>> Users mailing 
>>> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>>
>>>
>>>
>>> ___
>>> Users mailing list
>>> Users@lists.opensips.org
>>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>>
>>>
>>
>>
>> ___
>> Users mailing 
>> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>>
>> ___
>> Users mailing list
>> Users@lists.opensips.org
>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>
>
> ___
> Users mailing 
> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>
> ___
> Users mailing list
> Users@lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread Eric Tamme 
I mean you can use a private gist, but you will be publishing the link 
in a public email list.  In general I personally dont believe revealing 
ip addresses etc. is any problem - to put my money where my mouth is 
here is a gist link to an unaltered SIP trace on my server :)


https://gist.github.com/etamme/b864010448a29007b7e0457682e81d52

-Eric

On 06/23/2016 12:23 PM, John Nash wrote:
Ok i am ready with logs. About gist may I use private option as traces 
have our IPs, user


On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme > wrote:


Hey John,

Please paste a full UNALTERED sip trace into a gist
(gist.github.com ) from the proxy servers
perspective and provide a link so that we can see what comes in,
and what goes out from both sides.

EG: ngrep -qtd any -W byline port 5060

This will show us the traffic that is leaving the proxy destined
for the Freeswitch box, and what the freeswitch box sends back.

Also - you can look in your browsers console log and provide the
SIP trace from there in a seperate gist, so that we can see what
opensips sends back up to your browser.

-Eric



Am I using correct sip.js example? I copied it to my server and
accessing it using https: (used letsencrypt)

On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme > wrote:

1. I would suggest using SIP.js -
https://github.com/onsip/SIP.js it is a much more active
project that sipml5.

2. Im guessing that you are not properly passing flags to
RTPEngine.  If you want to have DTLS-SRTP between the
browser, and plain RTP/AVP between RTPEngine and freeswitch,
you need to "offer" rtp/avp to freeswitch, and "answer"
dtls-srtp back up to the browser.

the offer to freeswitch would be:

 $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
replace-origin ICE=remove";

and the answer back up to the browswer would be:

 $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";


-Eric



On 06/23/2016 08:20 AM, John Nash wrote:

I am following
http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and
trying to test a call

sipml5 --->Opensips + rtpengine > SIP end
point (Freeswitch)

But I do not have any audio on both sides. I see this error
at rtpengine log "SRTP output wanted, but no crypto suite
was negotiated"

Anyone tested this scenario positive?


___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users




___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users




___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread John Nash 
Ok i am ready with logs. About gist may I use private option as traces have
our IPs, user

On Thu, Jun 23, 2016 at 10:32 PM, Eric Tamme  wrote:

> Hey John,
>
> Please paste a full UNALTERED sip trace into a gist (gist.github.com)
> from the proxy servers perspective and provide a link so that we can see
> what comes in, and what goes out from both sides.
>
> EG: ngrep -qtd any -W byline port 5060
>
> This will show us the traffic that is leaving the proxy destined for the
> Freeswitch box, and what the freeswitch box sends back.
>
> Also - you can look in your browsers console log and provide the SIP trace
> from there in a seperate gist, so that we can see what opensips sends back
> up to your browser.
>
> -Eric
>
>
> Am I using correct sip.js example? I copied it to my server and accessing
> it using https: (used letsencrypt)
>
> On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme  wrote:
>
>> 1. I would suggest using SIP.js - https://github.com/onsip/SIP.js it is
>> a much more active project that sipml5.
>>
>> 2. Im guessing that you are not properly passing flags to RTPEngine.  If
>> you want to have DTLS-SRTP between the browser, and plain RTP/AVP between
>> RTPEngine and freeswitch, you need to "offer" rtp/avp to freeswitch, and
>> "answer" dtls-srtp back up to the browser.
>>
>> the offer to freeswitch would be:
>>
>> $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
>> replace-origin ICE=remove";
>>
>>
>> and the answer back up to the browswer would be:
>>
>> $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";
>>
>>
>> -Eric
>>
>>
>>
>> On 06/23/2016 08:20 AM, John Nash wrote:
>>
>> I am following
>> 
>> http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and trying
>> to test a call
>>
>> sipml5 --->Opensips + rtpengine > SIP end point
>> (Freeswitch)
>>
>> But I do not have any audio on both sides. I see this error at rtpengine
>> log "SRTP output wanted, but no crypto suite was negotiated"
>>
>> Anyone tested this scenario positive?
>>
>>
>> ___
>> Users mailing 
>> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>>
>> ___
>> Users mailing list
>> Users@lists.opensips.org
>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>
>
> ___
> Users mailing 
> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>
> ___
> Users mailing list
> Users@lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread Eric Tamme 

Hey John,

Please paste a full UNALTERED sip trace into a gist (gist.github.com) 
from the proxy servers perspective and provide a link so that we can see 
what comes in, and what goes out from both sides.


EG: ngrep -qtd any -W byline port 5060

This will show us the traffic that is leaving the proxy destined for the 
Freeswitch box, and what the freeswitch box sends back.


Also - you can look in your browsers console log and provide the SIP 
trace from there in a seperate gist, so that we can see what opensips 
sends back up to your browser.


-Eric

Am I using correct sip.js example? I copied it to my server and 
accessing it using https: (used letsencrypt)


On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme > wrote:


1. I would suggest using SIP.js - https://github.com/onsip/SIP.js
it is a much more active project that sipml5.

2. Im guessing that you are not properly passing flags to
RTPEngine.  If you want to have DTLS-SRTP between the browser, and
plain RTP/AVP between RTPEngine and freeswitch, you need to
"offer" rtp/avp to freeswitch, and "answer" dtls-srtp back up to
the browser.

the offer to freeswitch would be:

 $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
replace-origin ICE=remove";

and the answer back up to the browswer would be:

 $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";


-Eric



On 06/23/2016 08:20 AM, John Nash wrote:

I am following
http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and
trying to test a call

sipml5 --->Opensips + rtpengine > SIP end point
(Freeswitch)

But I do not have any audio on both sides. I see this error at
rtpengine log "SRTP output wanted, but no crypto suite was
negotiated"

Anyone tested this scenario positive?


___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



___
Users mailing list
Users@lists.opensips.org 
http://lists.opensips.org/cgi-bin/mailman/listinfo/users




___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread John Nash 
I double checked my rtpengine offer answer calls and now using
https://github.com/onsip/sipjs-examples/tree/master/demo-phone but I face
same issue (no audio either side) and error  "SRTP output wanted, but no
crypto suite was negotiated" Rtpengine also I updated to the latest now.

Am I using correct sip.js example? I copied it to my server and accessing
it using https: (used letsencrypt)

On Thu, Jun 23, 2016 at 7:58 PM, Eric Tamme  wrote:

> 1. I would suggest using SIP.js - https://github.com/onsip/SIP.js it is a
> much more active project that sipml5.
>
> 2. Im guessing that you are not properly passing flags to RTPEngine.  If
> you want to have DTLS-SRTP between the browser, and plain RTP/AVP between
> RTPEngine and freeswitch, you need to "offer" rtp/avp to freeswitch, and
> "answer" dtls-srtp back up to the browser.
>
> the offer to freeswitch would be:
>
> $var(rtpengine_flags) = "RTP/AVP replace-session-connection 
> replace-origin ICE=remove";
>
>
> and the answer back up to the browswer would be:
>
> $var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";
>
>
> -Eric
>
>
>
> On 06/23/2016 08:20 AM, John Nash wrote:
>
> I am following
> http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and trying
> to test a call
>
> sipml5 --->Opensips + rtpengine > SIP end point
> (Freeswitch)
>
> But I do not have any audio on both sides. I see this error at rtpengine
> log "SRTP output wanted, but no crypto suite was negotiated"
>
> Anyone tested this scenario positive?
>
>
> ___
> Users mailing 
> listUsers@lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>
> ___
> Users mailing list
> Users@lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

[OpenSIPS-Users] Dialog DB backend only updates on clean shutdown not crash

2016-06-23 Thread Jim DeVito 

Hi All.

2.2.0.rc2.20160617.c1aa55e-1.el7

modparam("dialog", "db_url", "text:///var/lib/opensips/dbtext")
modparam("dialog", "db_mode", 1)
modparam("dialog", "table_name", "dialog")

db_mode 1 should be realtime correct? The DB is only being synced from 
memory on clean shutdown. If I kill -9 the process the dialog info is 
lost. Thoughts?


Thanks!!

--
Jim DeVito

___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread Eric Tamme 
1. I would suggest using SIP.js - https://github.com/onsip/SIP.js it is 
a much more active project that sipml5.


2. Im guessing that you are not properly passing flags to RTPEngine.  If 
you want to have DTLS-SRTP between the browser, and plain RTP/AVP 
between RTPEngine and freeswitch, you need to "offer" rtp/avp to 
freeswitch, and "answer" dtls-srtp back up to the browser.


the offer to freeswitch would be:

$var(rtpengine_flags) = "RTP/AVP replace-session-connection replace-origin 
ICE=remove";

and the answer back up to the browswer would be:

$var(rtpengine_flags) = "UDP/TLS/RTP/SAVPF ICE=force";


-Eric


On 06/23/2016 08:20 AM, John Nash wrote:
I am following 
http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2 and 
trying to test a call


sipml5 --->Opensips + rtpengine > SIP end point 
(Freeswitch)


But I do not have any audio on both sides. I see this error at 
rtpengine log "SRTP output wanted, but no crypto suite was negotiated"


Anyone tested this scenario positive?


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

[OpenSIPS-Users] Opensips + rtpengine + Sipml5 webrtc

2016-06-23 Thread John Nash 
I am following http://www.opensips.org/Documentation/Tutorials-WebSocket-2-2
and trying to test a call

sipml5 --->Opensips + rtpengine > SIP end point (Freeswitch)

But I do not have any audio on both sides. I see this error at rtpengine
log "SRTP output wanted, but no crypto suite was negotiated"

Anyone tested this scenario positive?
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] CURL library with respect to REST_API calls

2016-06-23 Thread Liviu Chircu 

Hi, Ramachandran!

I read the "CURLOPT_WRITEFUNCTION" section [1] one more time, and it 
really looks like it should pass the body of the reply to the 
"write_func" callback we register before sending the HTTP PUT, even if 
we got an error code (3XX or higher).


Did you change anything in the "write_func()"? Notice how their docs say 
that if a proper "len" is not returned, the transfer will be aborted. 
Apart from that, I have no other ideas for now but to try and fetch the 
body myself on an error HTTP ret code of a CUROPT_PUT operation, see how 
(or if) it works for me, and give you more feedback.


[1]: https://curl.haxx.se/libcurl/c/CURLOPT_WRITEFUNCTION.html

All the best,

Liviu Chircu
OpenSIPS Developer
http://www.opensips-solutions.com

On 22.06.2016 20:19, Ramachandran, Agalya (Contractor) wrote:


Hi team,

Any one has any clue on the below topic?

Regards,
Agalya

*From:* Ramachandran, Agalya (Contractor)
*Sent:* Monday, June 20, 2016 1:45 PM
*To:* OpenSIPS users mailling list 
*Subject:* CURL library with respect to REST_API calls

Hi team,

I have a question regarding curl library behavior with respect to 
curl_easy_perform API call.


Here is the snippet of the code that am using in “rest_put” API call 
in rest_methods.c file


/w_curl_easy_setopt(handle, CURLOPT_WRITEFUNCTION, write_func);/

/ w_curl_easy_setopt(handle, CURLOPT_WRITEDATA, _body);/

//

When curl_easy_perform API call is success, I could able to retrieve 
the result body from the *res_body*.


But in the case of API call failure am not getting any details of the 
message. But getting only the http response code.


Is there a way to get the message details as well in the case where 
curl_easy_perform API fails?


LM_INFO(" Actual result body is %s\n", res_body.s);

When I print this, in the case of success, am getting a http response 
message in detail.


But in case of failure, the call back function /write_func /is not at 
all called. Why it is so?


Please guide me if there is a way to the message details in case of 
failure too.


Regards,
Agalya



___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users