[Freeswitch-users] TLS and 5061 doesn't seem to work
Michael Nielsen
mic.niel84 at gmail.com
Mon Sep 14 17:23:59 MSD 2015
When doing so I get the following error in fs_cli:
2015-09-14 08:23:24.120749 [ERR] sofia_glue.c:329 Invalid tls-verify-policy
value: none
2015-09-14 08:23:24.160528 [ERR] sofia.c:2935 Error Creating SIP UA for
profile: internal-ipv6 (sip:mod_sofia@[::1]:5060;transport=udp,tcp) ATTEMPT
1 (RETRY IN 5 SEC)
2015-09-14 08:23:24.180781 [ERR] sofia.c:2935 Error Creating SIP UA for
profile: internal (sip:mod_sofia at 159.122.89.10:5060;transport=udp,tcp)
ATTEMPT 1 (RETRY IN 5 SEC)
And then sofia status only shows port 5080 running...
On Mon, Sep 14, 2015 at 9:01 AM, Michael Nielsen <mic.niel84 at gmail.com>
wrote:
> I'm running this clean installation of FS:
> https://github.com/voxserv/freeswitch_conf_minimal
>
> Everything seems to work and I would now like to add TLS and SRTP
> encryption - for use on public WiFi and such.
>
> I've tried the following from this
> http://wiki.freeswitch.org/wiki/SIP_TLS#TLS.2C_SSL_and_SRTP_Encryption:
>
> ./gentls_cert setup -cn pbx.freeswitch.org -alt DNS:pbx.freeswitch.org -org freeswitch.org
> ./gentls_cert create_server -cn pbx.freeswitch.org -alt DNS:pbx.freeswitch.org -org freeswitch.org
>
> And in vars.xml:
>
> <X-PRE-PROCESS cmd="set" data="sip_tls_version=sslv23"/>
> <X-PRE-PROCESS cmd="set" data="internal_ssl_enable=true"/>
>
> Of course with my own domain when generating certificates.
>
> Restarting FS and trying to connect to 5061 over TLS doesn't work.
> Looking in fs_cli with debug 7 doesn't output anything when the client
> tries to connect.
>
> How to debug or does anyone know what's wrong? My certificates are
> generated automatically in /usr/conf/ssl.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20150914/90cf3601/attachment.html
Join us at ClueCon 2016 Aug 8-12, 2016
More information about the FreeSWITCH-users
mailing list