<div dir="ltr">Thanks William. I totally missed seeing the auth-calls parameter in the profile. I set it to true and it works great.<div><br></div><div>Thanks again,</div><div><br></div><div>Jason</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Jun 30, 2015 at 2:27 PM, William King <span dir="ltr"><<a href="mailto:william.king@quentustech.com" target="_blank">william.king@quentustech.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">If you are going to create a profile specifically to handle remote sip<br>
phones, you might as well setup the profile with TLS, and configure it<br>
to require register auth. Then by the time the call gets to the<br>
dialplan, it will have already had successful authentication.<br>
<br>
William King<br>
Senior Engineer<br>
Quentus Technologies, INC<br>
1037 NE 65th St Suite 273<br>
Seattle, WA 98115<br>
Main: <a href="tel:%28877%29%20211-9337" value="+18772119337">(877) 211-9337</a><br>
Office: <a href="tel:%28206%29%20388-4772" value="+12063884772">(206) 388-4772</a><br>
Cell: <a href="tel:%28253%29%20686-5518" value="+12536865518">(253) 686-5518</a><br>
<a href="mailto:william.king@quentustech.com">william.king@quentustech.com</a><br>
<div><div class="h5"><br>
On 6/30/15 12:35 PM, Komar, Jason wrote:<br>
> I have set up a couple of PBXs using FreeSWITCH over the last few years.<br>
> I have learned quite a bit, but am certainly no expert.<br>
><br>
> Recently, I installed Bria on my Android cell phone and was using it to<br>
> make calls over FreeSWITCH throughout our building on our local network<br>
> wifi. I wanted to be able to make calls from offsite as well, sometimes<br>
> on wifi and sometimes over cellular data. I setup an external5090<br>
> profile as I read on the wiki (didn't see anything in confluence yet). I<br>
> was able to register through this profile, but outgoing calls from my<br>
> softphone hit the public context and didn't go any further.<br>
><br>
> The user_context variable is set to default in my directory entry for<br>
> this user, but that didn't seem to make a difference. I tried two things<br>
> that worked, but am not sure if they open up any holes that would cause<br>
> security problems:<br>
><br>
> 1.) If I set the context to default rather than public in the<br>
> external5090 profile, it works, but I am unsure if this is at all secure.<br>
><br>
> 2.) If I leave the context as public in the external5090 profile and<br>
> uncomment this section in the public.xml dialplan,<br>
><br>
> <!--<br>
> If you have made it this far lets challenge the caller and if they<br>
> authenticate<br>
> lets try what they dialed in the default context. (commented out by default)<br>
> --><br>
><br>
> <extension name="check_auth" continue="true"><br>
> <condition field="${sip_authorized}" expression="^true$"<br>
> break="never"><br>
> <anti-action application="respond" data="407"/><br>
> </condition><br>
> </extension><br>
><br>
> <extension name="transfer_to_default"><br>
> <condition><br>
> <action application="transfer" data="${destination_number} XML default"/><br>
> </condition><br>
> </extension><br>
><br>
> it also works. This one seems the better option, but again, I'm not sure<br>
> so I am asking the opinion of the experts on the list.<br>
><br>
> I spent several hours searching and reading everything I could find<br>
> through Google and the mailing list archives, but came up a bit short.<br>
><br>
> Thanks in advance for your help.<br>
><br>
> Jason<br>
</div></div>> <a href="mailto:jkomar@jbox.ca">jkomar@jbox.ca</a> <mailto:<a href="mailto:jkomar@jbox.ca">jkomar@jbox.ca</a>><br>
><br>
><br>
><br>
> _________________________________________________________________________<br>
> Professional FreeSWITCH Consulting Services:<br>
> <a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><br>
> <a href="http://www.freeswitchsolutions.com" rel="noreferrer" target="_blank">http://www.freeswitchsolutions.com</a><br>
><br>
> Official FreeSWITCH Sites<br>
> <a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br>
> <a href="http://confluence.freeswitch.org" rel="noreferrer" target="_blank">http://confluence.freeswitch.org</a><br>
> <a href="http://www.cluecon.com" rel="noreferrer" target="_blank">http://www.cluecon.com</a><br>
><br>
> FreeSWITCH-users mailing list<br>
> <a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.freeswitch.org</a><br>
> <a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" rel="noreferrer" target="_blank">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users</a><br>
> UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" rel="noreferrer" target="_blank">http://lists.freeswitch.org/mailman/options/freeswitch-users</a><br>
> <a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br>
><br>
<br>
_________________________________________________________________________<br>
Professional FreeSWITCH Consulting Services:<br>
<a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><br>
<a href="http://www.freeswitchsolutions.com" rel="noreferrer" target="_blank">http://www.freeswitchsolutions.com</a><br>
<br>
Official FreeSWITCH Sites<br>
<a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br>
<a href="http://confluence.freeswitch.org" rel="noreferrer" target="_blank">http://confluence.freeswitch.org</a><br>
<a href="http://www.cluecon.com" rel="noreferrer" target="_blank">http://www.cluecon.com</a><br>
<br>
FreeSWITCH-users mailing list<br>
<a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.freeswitch.org</a><br>
<a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" rel="noreferrer" target="_blank">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users</a><br>
UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" rel="noreferrer" target="_blank">http://lists.freeswitch.org/mailman/options/freeswitch-users</a><br>
<a href="http://www.freeswitch.org" rel="noreferrer" target="_blank">http://www.freeswitch.org</a><br>
</blockquote></div><br></div>