[Freeswitch-users] Accepting an "optional" SRTP offer (crypto in RTP/AVP) and establishing SRTP
William Simon
wsimon at stratusvideo.com
Fri Oct 5 14:27:58 UTC 2018
We are working with an endpoint that offers optional SRTP in the non-RFC-compliant way of an a=crypto attribute within RTP/AVP.
I have told FreeSWITCH to allow this with rtp_allow_crypto_in_avp=true at the right place in the dialplan.
Immediately after that in the dialplan I have to reject SRTP by using rtp_secure_media=forbidden, otherwise the call setup still fails. By setting the value to forbidden, the call does proceed unencrypted.
We want FreeSWITCH to proceed with media encryption. Setting rtp_secure_media to any other value results in FreeSWITCH rejecting the offer like this:
v=0
o=FreeSWITCH 1538660754 1538660755 IN IP4 192.168.100.104
s=FreeSWITCH
c=IN IP4 192.168.100.104
t=0 0
m=audio 0 RTP/AVP 19
m=video 0 RTP/AVP 19
Is there anything else I can do to force SRTP in the answer?
“The information transmitted is intended only for the person or entity to which it is addressed and may contain proprietary, business-confidential and/or privileged material. If you are not the intended recipient of this message you are hereby notified that any use, review, retransmission, dissemination, distribution, reproduction or any action taken in reliance upon this message is prohibited. If you received this in error, please contact the sender and delete the material from any computer.”
More information about the FreeSWITCH-users
mailing list