[Freeswitch-users] problem with wss

Anthony Minessale anthony.minessale at gmail.com
Tue May 27 21:32:43 MSD 2014


You might want to re-comment that certs line in the sofia profile and
instead start FS with -certs /etc/freeswitch/certs

Also if you use the generated wss.pem, you will have to visit the socket at
least once with your browser by changing wss://your.box to
https://your.box:7443 and connecting and agreeing to the untrusted cert
dialog.




On Tue, May 27, 2014 at 12:19 PM, Michael Jerris <mike at jerris.com> wrote:

> No, he has the dir specified, so it won't use the default.
>
> On May 27, 2014, at 2:37 PM, Oleg Stolyar <olegstolyar at gmail.com> wrote:
>
> Jamie,
> I believe you need to have the wss.pem file in /usr/loca/freeswitch/certs/
> directory to avoid this problem.
>
>
> On Tue, May 27, 2014 at 6:56 AM, Jamie McClelland <jm at mayfirst.org> wrote:
>
>> Hi all - I'm very excited to see support for websockets in 1.4.4!
>>
>> However, I'm having trouble getting wss working.
>>
>> When I enable it, by adding the following to internal.xml:
>>
>> <param name="wss-binding" value=":7443"/>
>>
>> I get the following error when I reload mod_sofia:
>>
>> 2014-05-27 09:24:47.910948 [ERR] sofia.c:2778 Error Creating SIP UA for
>> profile: internal (sip:mod_sofia at 209.234.253.18:5060;transport=udp,tcp)
>> The likely causes for this are:
>> 1) Another application is already listening on the specified address.
>> 2) The IP the profile is attempting to bind to is not local to this
>> system.
>>
>> When I comment out the wss line, the error goes away.
>>
>> Strange... 209.234.253.18 is local to the machine, and I'm specifying
>> 7443 as the wss bind IP, not 5060 (which is specified as the "sip_port"
>> in the internal.xml file). If I change the sip_port to a different
>> number, I get the error, but it specifies the new sip_port.
>>
>> Also, accordig to lsof, port 7443 is not in use.
>>
>> I have ws enabled without problems.
>>
>> Here are the only differences between my sip_profile directory and the
>> vanilla conf one:
>>
>> 0 paul:/etc/freeswitch# diff -ur
>> /usr/share/freeswitch/conf/vanilla/sip_profiles/
>> /etc/freeswitch/sip_profiles/|less
>> Only in /etc/freeswitch/sip_profiles/external: mfpl-voicepulse.xml
>> diff -ur /usr/share/freeswitch/conf/vanilla/sip_profiles/internal.xml
>> /etc/freeswitch/sip_profiles/internal.xml
>> --- /usr/share/freeswitch/conf/vanilla/sip_profiles/internal.xml
>>  2014-05-22 14:39:26.000000000 -0400
>> +++ /etc/freeswitch/sip_profiles/internal.xml   2014-05-27
>> 09:29:29.000000000 -0400
>> @@ -196,7 +196,7 @@
>>      <!-- Port to listen on for TLS requests. (5061 will be used if
>> unspecified) -->
>>      <param name="tls-sip-port" value="$${internal_tls_port}"/>
>>      <!-- Location of the agent.pem and cafile.pem ssl certificates
>> (needed for TLS server) -->
>> -    <!--<param name="tls-cert-dir" value=""/>-->
>> +    <param name="tls-cert-dir" value="/etc/freeswitch/certs"/>
>>      <!-- Optionally set the passphrase password used by openSSL to
>> encrypt/decrypt TLS private key files -->
>>      <param name="tls-passphrase" value=""/>
>>      <!-- Verify the date on TLS certificates -->
>> @@ -304,7 +304,7 @@
>>
>>
>>      <!-- uncomment for sip over websocket support -->
>> -    <!--<param name="ws-binding"  value=":5066"/>-->
>> +    <param name="ws-binding"  value=":5066"/>
>>
>>      <!-- uncomment for sip over secure websocket support -->
>>      <!-- You need wss.pem in /usr/local/freeswitch/certs for wss -->
>>
>> Any suggestions?
>>
>> jamie
>>
>> p.s. I do have wss.pem in /etc/freeswitch/certs
>>
>
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> http://www.freeswitchsolutions.com
>
> 
> 
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://wiki.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>


-- 
Anthony Minessale II       ♬ @anthmfs  ♬ @FreeSWITCH  ♬

☞ http://freeswitch.org/http://cluecon.com/http://twitter.com/FreeSWITCH
☞ irc.freenode.net #freeswitch ☞ *http://freeswitch.org/g+
<http://freeswitch.org/g+>*

ClueCon Weekly Development Call
☎ sip:888 at conference.freeswitch.org  ☎ +19193869900
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20140527/c31d801e/attachment.html 


Join us at ClueCon 2013 Aug 6-8, 2013
More information about the FreeSWITCH-users mailing list