[Freeswitch-users] Freeswitch TLS gateway failure with 503
Aqs Younas
aqsyounas at gmail.com
Wed May 23 13:04:53 UTC 2018
Greetings list,
I am trying to make a TLS gateway working with my freeswitch. But it fails
with Service Unavailable [503]. Though I am perfectly able to make TLS
calls between phones. Only gateway is not working. I am populating gateway
configuration using lua.
Below is my profile and gateway configuration.
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<document type="freeswitch/xml">
<section name="configuration">
<configuration name="sofia.conf" description="sofia
Endpoint">
<global_settings>
<param name="log-level" value="0"/>
<param name="debug-presence" value="0"/>
</global_settings>
<profiles>
<profile name="external">
<aliases>
</aliases>
<gateways>
<gateway
name="ab345b4c-b961-4d3a-97a9-f227b52a7240">
<param
name="username" value="admin at pbx.primaryline.com.au"/>
<param
name="password" value="XXXXXXXXXXX"/>
<param
name="from-domain" value="pbx01.primaryline.com.au"/>
<param name="proxy"
value="203.134.5.10"/>
<param
name="expire-seconds" value="800"/>
<param
name="register" value="true"/>
<param
name="register-transport" value="tls"/>
<param
name="contact-params" value="transport=tls"/>
<param
name="retry-seconds" value="30"/>
<param
name="context" value="public"/>
<variables>
</variables>
</gateway>
</gateways>
<domains>
<!-- indicator to parse the
directory for domains with parse="true" to get gateways-->
<!--<domain
name="$${domain}" parse="true"/>-->
<!-- indicator to parse the
directory for domains with parse="true" to get gateways and alias every
domain to this profile -->
<!--<domain name="all"
alias="true" parse="true"/>-->
<domain name="all"
alias="false" parse="false"/>
</domains>
<settings>
<param
name="caller-id-type" value="pid"/>
<param name="sip-trace"
value="no"/>
<param name="sip-capture"
value="no"/>
<param name="rfc2833-pt"
value="101"/>
<param name="sip-port"
value="5080"/>
<param name="dialplan"
value="XML"/>
<param name="context"
value="public"/>
<param name="dtmf-type"
value="rfc2833"/>
<param name="dtmf-duration"
value="2000"/>
<param
name="inbound-codec-prefs" value="G7221 at 32000h,G7221 at 16000h
,G722,PCMU,PCMA,GSM"/>
<param
name="outbound-codec-prefs" value="PCMU,PCMA,GSM"/>
<param name="hold-music"
value="local_stream://default"/>
<param name="zrtp-passthru"
value="true"/>
<param
name="rtp-timer-name" value="soft"/>
<param
name="local-network-acl" value="localnet.auto"/>
<param
name="manage-presence" value="false"/>
<param
name="inbound-codec-negotiation" value="generous"/>
<param name="nonce-ttl"
value="60"/>
<param name="auth-calls"
value="false"/>
<param name="rtp-ip"
value="124.40.187.231"/>
<param name="sip-ip"
value="124.40.187.231"/>
<param name="ext-rtp-ip"
value="124.40.187.231"/>
<param name="ext-sip-ip"
value="124.40.187.231"/>
<param
name="rtp-timeout-sec" value="300"/>
<param
name="rtp-hold-timeout-sec" value="1800"/>
<param name="tls"
value="true"/>
<param name="tls-only"
value="false"/>
<param
name="tls-bind-params" value="transport=tls"/>
<param name="tls-sip-port"
value="5081"/>
<param name="tls-cert-dir"
value="/etc/freeswitch/ssl"/>
<param
name="tls-passphrase" value=""/>
<param
name="tls-verify-date" value="true"/>
<param
name="tls-verify-depth" value="2"/>
<param
name="tls-verify-in-subjects" value=""/>
<param name="tls-version"
value="tlsv1"/>
<param name="debug"
value="0"/>
<param
name="user-agent-string" value="FreeSWITCH"/>
</settings>
</profile>
</profiles>
</configuration>
</section>
</document>
Here is my 'sofia status' output.
freeswitch at pbx.primaryline.com.au> sofia status
Name Type
Data State
=================================================================================================
external-ipv6 profile
sip:mod_sofia@[::1]:5080
RUNNING (0)
external-ipv6 profile
sip:mod_sofia@[::1]:5081
RUNNING (0) (TLS)
external profile
sip:mod_sofia at 124.40.187.231:5080 RUNNING (0)
external profile
sip:mod_sofia at 124.40.187.231:5081 RUNNING (0) (TLS)
external::ab345b4c-b961-4d3a-97a9-f227b52a7240 gateway
sip:admin at pbx.primax.com.au@203.134.5.10 FAIL_WAIT
internal-ipv6 profile
sip:mod_sofia@[::1]:5060
RUNNING (0)
internal-ipv6 profile
sip:mod_sofia@[::1]:5061
RUNNING (0) (TLS)
internal profile
sip:mod_sofia at 124.40.187.231:5060 RUNNING (0)
internal profile
sip:mod_sofia at 124.40.187.231:5061 RUNNING (0) (TLS)
=================================================================================================
I am really stuck here, google search is leading me nowhere.
Any pointer/suggestion is much appreciated.
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20180523/135edb23/attachment.html>
More information about the FreeSWITCH-users
mailing list