<div dir="rtl"><div dir="ltr">Hi,</div><div dir="ltr"><br></div><div dir="ltr"> There might be two issues here:</div><div dir="ltr"><br></div><div dir="ltr">1. Yealink had a bug in TLS omplementation and FreeSwitch. This has been fixed about a month ago, so make sure you are using the latest firmware.</div>
<div dir="ltr">2. Make sure you set:</div><div dir="ltr"> <action application="set" data="sip_secure_media=true"/><br></div><div dir="ltr"> <action application="export" data="nolocal:sip_secure_media=true"/><br>
<action application="set" data="rtp_secure_media=true"/><br> <action application="export" data="nolocal:rtp_secure_media=true"/></div><div dir="ltr"><br>before calling the phone (some of the above lines might be superfluous, but I didn't bother to check it).</div>
<div dir="ltr"><br></div><div dir="ltr"> Regards, __Yehavi:</div></div><div class="gmail_extra"><br><br><div class="gmail_quote"><div dir="ltr">2014-04-25 16:38 GMT+03:00 Iskren Hadzhinedev <span dir="ltr"><<a href="mailto:iskren.hadzhinedev@ikiji.com" target="_blank">iskren.hadzhinedev@ikiji.com</a>></span>:</div>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><u></u>
<div style="font-family:"Exo 2";font-size:8pt;font-style:normal;font-weight:400">
<p style="margin:0px;text-indent:0px">Hello everyone,</p>
<p style="margin:0px;text-indent:0px">Just got a couple of new Yealink T48G phones and I am having a couple of rather weird (at least for me) issues with them.</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">Whenever I enable TLS authentication on the phones, they register with the FreeSWITCH box but there's no media on the </p>
<p style="margin:0px;text-indent:0px">outbound calls and I'm unable to get any incoming calls at all. If I switch the authentication protocol to TCP or UDP it's all </p>
<p style="margin:0px;text-indent:0px">working good. I tried enabling/disabling SRTP for all 3 protocols and it kept the behaviour consistent.</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">All calls made are local (registered to the same FreeSWITCH box) and only these phones have any issues with calls. </p>
<p style="margin:0px;text-indent:0px">I can call someone from the Yealink and then add another person in a 3-way conference. </p>
<p style="margin:0px;text-indent:0px">That way the two remote parties can hear eachother, but the Yealink is dead silent.</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">Here's the profile on which all phones are connected:</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""><profile name="local"></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <domains></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <domain name="all" alias="true" parse="false"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> </domains></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <settings></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="debug" value="0"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="sip-trace" value="no"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="sip-capture" value="no"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="watchdog-enabled" value="no"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="watchdog-step-timeout" value="30000"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="watchdog-event-timeout" value="30000"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="log-auth-failures" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="forward-unsolicited-mwi-notify" value="false"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="rfc2833-pt" value="101"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="sip-port" value="5060"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="dialplan" value="XML"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="liberal-dtmf" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="dtmf-duration" value="2000"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="inbound-codec-prefs" value="SILK,OPUS,G722,PCMU,PCMA,GSM"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="outbound-codec-prefs" value="PCMU,PCMA,GSM"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="rtp-timer-name" value="soft"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="rtp-ip" value="$${local_ip_v4}"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="sip-ip" value="$${local_ip_v4}"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="hold-music" value="local_stream://moh"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="record-path" value="$${base_dir}/recordings"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="record-template" value="${caller_id_number}.${target_domain}.${strftime(%Y-%m-%d-%H-%M-%S)}.wav"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="manage-presence" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="inbound-codec-negotiation" value="generous"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls-only" value="false"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls-version" value="tlsv1"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls-bind-params" value="transport=tls"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls-sip-port" value="5061"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls-cert-dir" value="$${base_dir}/conf/ssl"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="tls-verify-date" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="inbound-late-negotiation" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="inbound-zrtp-passthru" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="nonce-ttl" value="60"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="auth-calls" value="yes"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="inbound-reg-force-matching-username" value="true"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="auth-all-packets" value="false"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="ext-rtp-ip" value="$${local_ip_v4}"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="ext-sip-ip" value="$${local_ip_v4}"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> <param name="challenge-realm" value="auto_from"/></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""> </settings></span></p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"cousine""></profile></span></p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">and (due to their sizes) a tport log, a siptrace for an outgoing call from the Yealink and an incoming call (that never rings the phone) with TLS enabled.</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">The whole setup is:</p>
<p style="margin:0px;text-indent:0px">FreeSWITCH -- Internet -- NAT Router -- Yealink and Android phone (in different subnets so no direct LAN communication between them)</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">Any thoughts are greatly appreciated.</p>
<p style="margin:0px;text-indent:0px">Thanks in advance!</p>
<p style="margin:0px;text-indent:0px"> </p>
<p style="margin:0px;text-indent:0px">Kind regards,<br>-- </p>
<p style="margin:0px;text-indent:0px"><span style="font-family:"exo 2"">Iskren Hadzhinedev</span></p></div><br>_________________________________________________________________________<br>
Professional FreeSWITCH Consulting Services:<br>
<a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><br>
<a href="http://www.freeswitchsolutions.com" target="_blank">http://www.freeswitchsolutions.com</a><br>
<br>
FreeSWITCH-powered IP PBX: The CudaTel Communication Server<br>
<a href="http://www.cudatel.com" target="_blank">http://www.cudatel.com</a><br>
<br>
Official FreeSWITCH Sites<br>
<a href="http://www.freeswitch.org" target="_blank">http://www.freeswitch.org</a><br>
<a href="http://wiki.freeswitch.org" target="_blank">http://wiki.freeswitch.org</a><br>
<a href="http://www.cluecon.com" target="_blank">http://www.cluecon.com</a><br>
<br>
FreeSWITCH-users mailing list<br>
<a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.freeswitch.org</a><br>
<a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" target="_blank">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users</a><br>
UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" target="_blank">http://lists.freeswitch.org/mailman/options/freeswitch-users</a><br>
<a href="http://www.freeswitch.org" target="_blank">http://www.freeswitch.org</a><br>
<br></blockquote></div><br></div>