<br><br><div class="gmail_quote">On Thu, Dec 24, 2009 at 12:31 PM, Lars Zeb <span dir="ltr"><<a href="mailto:larclap@yahoo.com" target="_blank">larclap@yahoo.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div link="blue" vlink="purple" lang="EN-US">
<div>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);">Thanks for the
reply, Michael.</span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);"> </span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);">I tried the
digest authentication using the cidr and copying the conf/sip_profiles/internal.xml
from the distribution, where</span></p>
<p class="MsoNormal" style="text-indent: 0.5in;"><span style="font-size: 11pt; color: rgb(31, 73, 125);"><param name="apply-inbound-acl" value=”domains”/></span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);">As a result,
one endpoint could not register and another was unauthorized.</span><span style="font-size: 11pt; color: rgb(31, 73, 125);"></span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);"> </span></p>
<p class="MsoNormal"><span style="font-size: 11pt;"><a href="http://pastebin.freeswitch.org/11634" target="_blank">http://pastebin.freeswitch.org/11634</a></span></p>
<p class="MsoNormal"> </p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);">Then I went
changed the context in internal.xml from public to default and</span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);"> <param
name="apply-inbound-acl" value="<a href="http://192.168.0.0/24" target="_blank"><span style="font-size: 12pt; color: rgb(31, 73, 125); text-decoration: none;">192.168.10.0/24</span></a>"/> <param
name="apply-register-acl" value="<a href="http://192.168.0.0/24" target="_blank"><span style="font-size: 12pt; color: rgb(31, 73, 125); text-decoration: none;">192.168.10.0/24</span></a>"/></span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);"> </span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);">And the phones
registered OK. So my confusion persists.</span></p>
<p class="MsoNormal"><span style="font-size: 11pt; color: rgb(31, 73, 125);"></span></p></div></div></blockquote><div>Like Brian said in his post, if you let someone in via ACL then there is no directory lookup which means the call is essentially from an anonymous/unidentified party and thus the reason for having the context set to "public" even on the internal profile. This is one of the topics that I intend to cover in the wiki article.<br>
-MC<br>
</div></div><br>