We’re running Asterisk 16.12.0 (ignore the logs, we’ve since upgraded) on FreePBX 14.0.13.34 and we’re getting 488 Not Acceptable here with SRTP specifically on PJSIP.
Switching off SRTP or making it optional works fine, TLS still works at the signalling level but SRTP is a no-go on PJSIP.
FYI - Switching to Chan_SIP with the same codecs, and it works perfectly with SRTP.
We’ve tried using MicroSIP 3.20.0 and Jitsi 2.10.5550, both with the same results.
Having said that, I was about to post my endpoint configuration when a line caught my eye -
media_encryption=dtls
Now, interestingly enough under Media Encryption, I never selected “DTLS-SRTP (not recommended)”.
Going back to FreePBX, I noticed that under DTLS, “Enable DTLS” was set to Yes. After switching this to No, i was able to make calls using SDES.
I created a new extension and noticed that upon creation, Enable DTLS is set to No. However after enabling Media Encryption(SRTP via in-SDP (recommended)), Enable DTLS is automatically set to Yes.
So, issue solved, however regarding the DTLS auto-enabling itself - i’m not sure if that’s intended behavior - if so could someone explain why?
