[Freeswitch-users] problem with wss

Michael Jerris mike at jerris.com
Tue May 27 18:30:16 MSD 2014


this usually means a problem with the cert.  You can turn up sofia debug to see a bit more info.


On May 27, 2014, at 1:56 PM, Jamie McClelland <jm at mayfirst.org> wrote:

> Hi all - I'm very excited to see support for websockets in 1.4.4!
> 
> However, I'm having trouble getting wss working.
> 
> When I enable it, by adding the following to internal.xml:
> 
> <param name="wss-binding" value=":7443"/>
> 
> I get the following error when I reload mod_sofia:
> 
> 2014-05-27 09:24:47.910948 [ERR] sofia.c:2778 Error Creating SIP UA for
> profile: internal (sip:mod_sofia at 209.234.253.18:5060;transport=udp,tcp)
> The likely causes for this are:
> 1) Another application is already listening on the specified address.
> 2) The IP the profile is attempting to bind to is not local to this
> system.
> 
> When I comment out the wss line, the error goes away.
> 
> Strange... 209.234.253.18 is local to the machine, and I'm specifying
> 7443 as the wss bind IP, not 5060 (which is specified as the "sip_port"
> in the internal.xml file). If I change the sip_port to a different
> number, I get the error, but it specifies the new sip_port.
> 
> Also, accordig to lsof, port 7443 is not in use.
> 
> I have ws enabled without problems.
> 
> Here are the only differences between my sip_profile directory and the
> vanilla conf one:
> 
> 0 paul:/etc/freeswitch# diff -ur /usr/share/freeswitch/conf/vanilla/sip_profiles/ /etc/freeswitch/sip_profiles/|less
> Only in /etc/freeswitch/sip_profiles/external: mfpl-voicepulse.xml
> diff -ur /usr/share/freeswitch/conf/vanilla/sip_profiles/internal.xml /etc/freeswitch/sip_profiles/internal.xml
> --- /usr/share/freeswitch/conf/vanilla/sip_profiles/internal.xml        2014-05-22 14:39:26.000000000 -0400
> +++ /etc/freeswitch/sip_profiles/internal.xml   2014-05-27 09:29:29.000000000 -0400
> @@ -196,7 +196,7 @@
>     <!-- Port to listen on for TLS requests. (5061 will be used if unspecified) -->
>     <param name="tls-sip-port" value="$${internal_tls_port}"/>
>     <!-- Location of the agent.pem and cafile.pem ssl certificates (needed for TLS server) -->
> -    <!--<param name="tls-cert-dir" value=""/>-->
> +    <param name="tls-cert-dir" value="/etc/freeswitch/certs"/>
>     <!-- Optionally set the passphrase password used by openSSL to encrypt/decrypt TLS private key files -->
>     <param name="tls-passphrase" value=""/>
>     <!-- Verify the date on TLS certificates -->
> @@ -304,7 +304,7 @@
> 
> 
>     <!-- uncomment for sip over websocket support -->
> -    <!--<param name="ws-binding"  value=":5066"/>-->
> +    <param name="ws-binding"  value=":5066"/>
> 
>     <!-- uncomment for sip over secure websocket support -->
>     <!-- You need wss.pem in /usr/local/freeswitch/certs for wss -->
> 
> Any suggestions?
> 
> jamie
> 
> p.s. I do have wss.pem in /etc/freeswitch/certs
> 



Join us at ClueCon 2013 Aug 6-8, 2013
More information about the FreeSWITCH-users mailing list