I think what he is trying to do is use SIP to/from a country which has blocked SIP in general. You can do this with most any platform as long as you can establish an encryted tunnel or use a proprietary encryption method (like CBCOM) which is vendor specific. You will be best suited to establishing an encryption method OUTSIDE of you sip platform, whether is be in a VPN with firewalls at both end or through the use of a SBC with an encryption method like CBCOM at both ends. CBCOM is Grandstream UA's only.
So once you do that, you sip platform is unaware and can send messages to/from endpoints. What you need to undertsand is whether or not your endpoints are in remote branch offices or if they are in remote locations without an office at which point you have to decide how to deploy and whether the VPN is hardware or software based. OpenVPN would be a relatively easy deployment for something like this. So would IPSEC. IPSEC is better aimed at site-to-site deployments, while OpenVPN is much better suited to the mobile (laptop) user. Only you can answer the question "Can I establish encrypted tunnels between my locations?". If SIP is blocked, you might find other traffic is not allowed or blocked either. Traffic can be blocked by PORT or by actually sniffing the headers from a ISP node and determining and classifying "what that traffic is". We have routers that do the same thing. The inspect the HTTP traffic and tell us: Netflix website, Netflix Video streaming, Google, CNN, etc.and categorize it. All of it is the same destination ports of 80/443 but it is able to discern the difference between browsing the Netflix site and the actual streaming of a video. It can also determine SIP Voice and Video. There is nothing to say once you establish a VPN tunnel and change the default port that the agency regulating your Internet connection at the other end won't put a Deep Packet Inspection probe out and determine that what you have is an ISPEC or other VPN, then decide to block it or rate limit it (they still wont really be able to see what's inside of it). Some countries (Afric in particular) jail ISP's who offer VOIP and do a run around from the state owned telecom agency. This is really a discussion of how to deploy an encrypted network. We run IPSEC tunnels between offices now and run Polycom phones at each branch. All of our calls inside are encrypted because they are inside the tunnel.I don't see how this really has anything to do with SIP in general, other than asking the question "Can I hide my SIP traffic." The answer is, "If you can establish an encrypted tunnel, you can hide "whatever" you want inside it. I think the question you have has been answered to the degree it can be answered on here. You have to understand how to establish a secure network in a way that suits your requirements. Then you can deploy whatever you want. Good luck. On Tue, Dec 13, 2011 at 7:45 AM, Michael Picher <mpic...@ezuce.com> wrote: > what are you talking about? > > get your sip client from wherever... download and install sipXecs from > http://download.sipfoundry.org and install it on your own machine... > > > On Tue, Dec 13, 2011 at 6:53 AM, Spiny Tel <spiny...@gmail.com> wrote: > >> Can you please provide me some demo's or quick links to do some testings? >> >> Below is my targeted scenario >> >> >> SIP Client <---------> (encrypted SIP + RTP ) Encryption Server >> <------> SIP Registrar <----> PSTN >> >> On Tue, Dec 13, 2011 at 5:30 PM, Michael Picher <mpic...@ezuce.com>wrote: >> >>> As far as I know, yes. >>> >>> >>> On Tue, Dec 13, 2011 at 6:15 AM, Spiny Tel <spiny...@gmail.com> wrote: >>> >>>> Yeah. It can be called as VPN solution to. Our SIP client is based on >>>> open source PJSIP (www.pjsip.org). sipXecs software supports that? >>>> >>>> >>>> On Tue, Dec 13, 2011 at 3:47 PM, Michael Picher <mpic...@ezuce.com>wrote: >>>> >>>>> VPN? >>>>> >>>>> On Tue, Dec 13, 2011 at 1:23 AM, Spiny Tel <spiny...@gmail.com> wrote: >>>>> >>>>>> Dear, >>>>>> >>>>>> I need a solution for VOIP blocked country, Is there any B2BUA or >>>>>> proxy for that purpose. >>>>>> >>>>>> SIPx supports like that? >>>>>> >>>>>> Thanks >>>>>> >>>>>> _______________________________________________ >>>>>> sipx-users mailing list >>>>>> sipx-users@list.sipfoundry.org >>>>>> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> Michael Picher, Director of Technical Services >>>>> eZuce, Inc. >>>>> >>>>> 300 Brickstone Square**** >>>>> >>>>> Suite 201**** >>>>> >>>>> Andover, MA. 01810 >>>>> O.978-296-1005 X2015 >>>>> M.207-956-0262 >>>>> @mpicher <http://twitter.com/mpicher> >>>>> www.ezuce.com >>>>> >>>>> >>>>> _______________________________________________ >>>>> sipx-users mailing list >>>>> sipx-users@list.sipfoundry.org >>>>> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >>>>> >>>> >>>> >>>> _______________________________________________ >>>> sipx-users mailing list >>>> sipx-users@list.sipfoundry.org >>>> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >>>> >>> >>> >>> >>> -- >>> Michael Picher, Director of Technical Services >>> eZuce, Inc. >>> >>> 300 Brickstone Square**** >>> >>> Suite 201**** >>> >>> Andover, MA. 01810 >>> O.978-296-1005 X2015 >>> M.207-956-0262 >>> @mpicher <http://twitter.com/mpicher> >>> www.ezuce.com >>> >>> >>> _______________________________________________ >>> sipx-users mailing list >>> sipx-users@list.sipfoundry.org >>> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >>> >> >> >> _______________________________________________ >> sipx-users mailing list >> sipx-users@list.sipfoundry.org >> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >> > > > > -- > Michael Picher, Director of Technical Services > eZuce, Inc. > > 300 Brickstone Square**** > > Suite 201**** > > Andover, MA. 01810 > O.978-296-1005 X2015 > M.207-956-0262 > @mpicher <http://twitter.com/mpicher> > www.ezuce.com > > > _______________________________________________ > sipx-users mailing list > sipx-users@list.sipfoundry.org > List Archive: http://list.sipfoundry.org/archive/sipx-users/ > -- ====================== Tony Graziano, Manager Telephone: 434.984.8430 sip: tgrazi...@voice.myitdepartment.net Fax: 434.465.6833 Email: tgrazi...@myitdepartment.net LAN/Telephony/Security and Control Systems Helpdesk: Telephone: 434.984.8426 sip: helpd...@voice.myitdepartment.net Helpdesk Customers: http://myhelp.myitdepartment.net Blog: http://blog.myitdepartment.net Linked-In Profile: http://www.linkedin.com/pub/tony-graziano/14/4a6/7a4 Ask about our Internet Fax services!
_______________________________________________ sipx-users mailing list sipx-users@list.sipfoundry.org List Archive: http://list.sipfoundry.org/archive/sipx-users/
