[Freeswitch-users] How to setup TLS

Peter P GMX Prometheus001 at gmx.net
Sat Aug 2 08:54:04 PDT 2008


I finally set up a new machine with Ubuntu 8.04 server, installed 
freeswitch from SVN and followed the instructions from

http://wiki.freeswitch.org/wiki/Tls

I have installed libgnutls-dev befor running ./configure script. Then 
created a CA with default-values of
"bin/gentls_cert setup" and
"bin/gentls_cert create"

The 2 pem files are in the default path conf/ssl.

I receive the following in the log messages and no process is listening 
on port 5061

2008-08-02 17:38:06 [NOTICE] switch_loadable_module.c:237 
switch_loadable_module_process() Adding Application 'socket'
2008-08-02 17:38:07 [DEBUG] sofia_glue.c:487 
sofia_glue_ext_address_lookup() Stun Success [217.24.XXX.XXX]:[57331]
2008-08-02 17:38:07 [NOTICE] sofia.c:1873 config_sofia() Adding Alias 
[outbound] for profile [external]
2008-08-02 17:38:07 [NOTICE] sofia.c:1883 config_sofia() Started Profile 
external [sofia_reg_external]
2008-08-02 17:38:07 [DEBUG] sofia.c:522 sofia_profile_thread_run() 
Creating agent for external
2008-08-02 17:38:07 [NOTICE] sofia.c:1873 config_sofia() Adding Alias 
[192.168.178.31] for profile [internal]
2008-08-02 17:38:07 [NOTICE] sofia.c:1873 config_sofia() Adding Alias 
[default] for profile [internal]
2008-08-02 17:38:07 [NOTICE] sofia.c:1883 config_sofia() Started Profile 
internal [sofia_reg_internal]
2008-08-02 17:38:07 [DEBUG] sofia.c:522 sofia_profile_thread_run() 
Creating agent for internal
2008-08-02 17:38:07 [DEBUG] sofia.c:557 sofia_profile_thread_run() 
Created agent for external
2008-08-02 17:38:07 [DEBUG] sofia.c:585 sofia_profile_thread_run() Set 
params for external
2008-08-02 17:38:07 [DEBUG] sofia.c:606 sofia_profile_thread_run() 
activated db for external
2008-08-02 17:38:07 [DEBUG] sofia.c:633 sofia_profile_thread_run() 
Starting thread for external
2008-08-02 17:38:07 [ERR] sofia.c:552 sofia_profile_thread_run() Error 
Creating SIP UA for profile: internal
2008-08-02 17:38:07 [DEBUG] sofia_glue.c:487 
sofia_glue_ext_address_lookup() Stun Success [217.24.XXX.XXX]:[57446]
2008-08-02 17:38:07 [NOTICE] sofia.c:1883 config_sofia() Started Profile 
nat [sofia_reg_nat]
2008-08-02 17:38:07 [DEBUG] sofia.c:522 sofia_profile_thread_run() 
Creating agent for nat
2008-08-02 17:38:07 [DEBUG] mod_sofia.c:2227 mod_sofia_load() Waiting 
for profiles to start
2008-08-02 17:38:07 [DEBUG] sofia.c:557 sofia_profile_thread_run() 
Created agent for nat
2008-08-02 17:38:07 [DEBUG] sofia.c:585 sofia_profile_thread_run() Set 
params for nat
2008-08-02 17:38:07 [DEBUG] sofia.c:606 sofia_profile_thread_run() 
activated db for nat
2008-08-02 17:38:07 [DEBUG] sofia.c:633 sofia_profile_thread_run() 
Starting thread for nat

I checked with nmap and netstat -an but there are no processes listening 
on port 5061.
Also gentls_cert with real values didn't work.
Without TLS enabled it works well on port 5060.

Any hints how to continue?



Brian West schrieb:
> This should get you started.
>
> http://wiki.freeswitch.org/wiki/Tls
>
> /b
>
> On Jul 23, 2008, at 1:29 PM, Peter P GMX wrote:
>
>   
>> Hello,
>>
>> has anybody managed to setup TLS? When I change  tls to "true" in
>> internal.xml, then freeswitch doens't listen on any ports (5060 5061).
>> I use freeswitch 1.0.0-0ubuntu1~ppa4
>>
>> Is there any tutorial available (could not find it while googling)? I
>> would like to set it up with Snom phones (Snom320)
>>
>> Best regards
>> Peter
>>
>>
>>
>> _______________________________________________
>> Freeswitch-users mailing list
>> Freeswitch-users at lists.freeswitch.org
>> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
>> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
>> http://www.freeswitch.org
>>     
>
> Brian West
> sip:brian at freeswitch.org
>
>
>
>
> _______________________________________________
> Freeswitch-users mailing list
> Freeswitch-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
>   




More information about the FreeSWITCH-users mailing list