SIP Security in Yate
From Yate Documentation
(Difference between revisions)
(→How to set a TLS listener) |
|||
| Line 16: | Line 16: | ||
In openssl.conf | In openssl.conf | ||
| − | [server_context] | + | [server_context] |
| − | enable=yes | + | enable=yes |
| − | certificate=name.crt | + | certificate=name.crt |
| − | key=name.key | + | key=name.key |
The files name.crt and name.key have to be in the same place as the configuration file in this example. | The files name.crt and name.key have to be in the same place as the configuration file in this example. | ||
Revision as of 15:08, 14 November 2012
Yate can bind on UDP, TCP and TLS. This is done using a listener that it is a specific section in ysipchan.conf.
SIP secure it is done by building a TLS listener. Yate will bind on TLS with SRTP.
How to set a TLS listener
In ysipchan.conf:
[listener listener-tls] type=tls addr=x.x.x.x port=5061 sslcontext=server_context
In openssl.conf
[server_context] enable=yes certificate=name.crt key=name.key
The files name.crt and name.key have to be in the same place as the configuration file in this example.
