[Freeswitch-users] FreeSWITCH Sofia DNS Cache SIP/SDP INVITE Auth Fail
Michael Jerris
mike at jerris.com
Thu Aug 26 10:41:43 PDT 2010
The Borg have many technologies, apparently sip nat traversal is not one of them.
Defense against assimilation:
1. Provide open sip server for communications with collective
2. Place behind 2-wire router
3. Laugh at their inability to traverse NAT
4. Repeat
On Aug 26, 2010, at 9:04 AM, Locutis of Borg wrote:
> Hi,
>
> I have been struggling with failed outbound calls to my ITSP.
>
> Seems that my FreeSWITCH does not know who to send SIP/SDP INVITE packets to. FS has the DNS cached and uses that to send the first INVITE, then it gets expired and refreshes it to another IP, just in time for the second INVITE, causing an AUTHENTICATION failure.
>
> The packet capture would only show the 1st INVITE SIP to one resolved IP. Then, the 2nd INVITE SIP/SDP to a different resolved IP.
>
> FS is on a DMZ. I have extensively tested IPTABLES, NAT, and even rebuilt FS from the latest GIT 2 days ago. In the ext. SIP profile, if I use hostname for proxy, initial calls fail, but on redial, they complete. Now, in the same SIP profile, I use the IP address, call are OK. (for both, REG is false)
>
> A reasonable solution seems to be to use the IP in the ext. SIP profile. But, is that the best?
>
> Any experience with this kind of issue? Any suggestion would be greatly appreciated.
>
> Thank you,
> Cheers
>
>
>
> _______________________________________________
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
More information about the FreeSWITCH-users
mailing list