[Freeswitch-users] Secure RTP

Brian West brian at freeswitch.org
Fri May 22 06:59:06 PDT 2009


On May 22, 2009, at 12:47 AM, Jim Burke wrote:

> Hey Brian,
>
> Will have a look at ZRTP :)
>
> Not sure I understand your comments regarding its all over once
> receiving the 415 from the B party.  Is'nt that what parm
> continue_on_fail does?  The fact that it sends the invite back out
> sorta proves this.

The A-LEG has to hangup to re-enable SRTP it can't do it if it didn't  
invite with it in the first place.

>
> The other point of interest here is that if you set <action
> application="export" data="sip_secure_media=true"/> before the first
> bridge function it will include the security descriptions in the B leg
> INVITE even when the A leg does not have them and the call will
> succeed.  The B Eyebeam will show the locked padlock while A does not.

Make sure you do not answer the call before you do it.

>
>> From what I can see in code it is this guy that must stop it all from
> happening.  TFLAG_SECURE  But I dont understand why :(

Again you have to invite to FS with crypto it can't magically cause  
crypto to work unless you initiate it with your first invite.

>
> Regards,
> Jim

Brian West
brian at freeswitch.org

-- Meet us at ClueCon!  http://www.cluecon.com




-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20090522/14b08962/attachment-0002.html 


More information about the FreeSWITCH-users mailing list