2011/7/7 Olle E. Johansson <o...@edvina.net>: >> Why would Proxy B want to _validate_ the certificate of Proxy A if it have >> not done so when Proxy A established a connection? Proxy B might want to >> _verify_ that Proxy A presented the same certificate when Proxy B falls back. > Proxy A sets up a connection to proxy B and have a request with a SIP target > URI in mind. It needs to validate proxy B before transmitting the message. I > think we're in agreement there. > > When proxy B sets up a connection to proxy A with another target SIP URI, it > needs to validate that URI. It can't assume anything, nothing, since it has > never gotten a certificate from proxy A...
In the case of response fallback mechanism, there is no a SIP URI to contact, but just a hostname/IP (Via sent-by) and optional port and a protocol (Via transport). RFC 3263 produceres are required. -- Iñaki Baz Castillo <i...@aliax.net> _______________________________________________ Sip-implementors mailing list Sip-implementors@lists.cs.columbia.edu https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors
