Asterisk Ip Authentication

Home » Asterisk Users » Asterisk Ip Authentication
Asterisk Users 14 Comments

Hi all, I’ve tried to sen calls to Asterisk from different soft switch. I want to define ip authentication(not register) to an extension for make call through asterisk. Is there any way to make call from asterisk without register. Only ip authentication. Kind Regards.

14 thoughts on - Asterisk Ip Authentication

  • hi Thanks for replay. now asterisk accepts calls. But 32 second later, calls drop.

    Error code:
    -Asterisk-HangupCause: Protocol error, unspecified X-Asterisk-HangupCauseCode: 111

  • Hi all, I’ve tried to sen calls to asterisk from different soft switch. I want to define ip authentication(not register) to an extension for make call through asterisk. Is there any way to make call from asterisk without register. Only ip authentication. I tried too many different configurations but it hasn’t worked. This is my sip.conf

    –sip.conf
    [3333]
    host=x.x.x.x qualify=yes type=peer insecure=port,invite context=from-internal disallow=all allow=ulaw allow=alaw allow=g729
    allow=gsm

    But gives SIP/2.0 401 Unauthorized error.

    Kind Regards.

  • You should take a look at this options:

    type=friend context=my_context host=ip_address

    Am 26.07.2013 16:52, schrieb jin jan:

  • Additionally you shoudl take a look at “sip set debug on” (in cli) and then place a call.

    Am 26.07.2013 17:14, schrieb Thorsten G

  • hi,

    [3333]
    type=peer insecure=invite,port host=x.x.x.x context=from-internal disallow=all allow=g729
    allow=alaw allow=ulaw allow=gsm canreinvite=no nat=no qualify=yes

    this works fine for one softswitch bu i tried another soft switch it gives SIP/2.0 488 Not acceptable here error. Any idea?

  • No Acceptable here is a codec error.

    Check the other soft switch and see what codecs it is sending.

    if you say allow=all it will work but thats not secure at all.

    Kind Regards

    Andrew Colin Technical Director T:010 591 4358
    C: 082 310 3007
    andrew@vsave.co.za

  • How is allow=all insecure? I can see inefficient, but what would make that insecure eludes me.

  • I just find it insecure because if someone does hack they can use any codec. I suppose not very insecure but I like to lock things down as much as possible.

  • hi all, i’ve changed allow=all and restarted service. but still gives 488 Not acceptable here The softswitch sends codec g729.
    “core show translation” says codec g729 alsa installed.

  • –001a11c2432a2add4904e2a1b858
    Content-Type: text/plain; charset=ISO-8859-1

    hi Andrew, here is my sip.conf

    [3333]
    host=x.x.x.x qualify=yes type=peer insecure=port,invite context=from-internal disallow=all allow=all

    if you say allow=all it will work but thats not secure at all.
    
    How is allow=all insecure?  I can see inefficient, but what would make that insecure eludes me.

    
    
  • remove disallow completely

    you are basically saying do not allow anything then allow anything

    so remove the disallow part and leave allow

    Kind Regards

    Andrew Colin Technical Director T:010 591 4358
    C: 082 310 3007
    andrew@vsave.co.za