Change Port to 5070

quazimotto · April 26, 2022, 3:13pm

Greetings, Guys. I have the config below to try and tie into a NEC SV8100. I need to change the port to 5070. Would I say host=192.168.1.224:5070 and delete insecure=port? or port=5070 and delete insecure=port?

host=192.168.1.224
type=friend
insecure=port, invite
dtmfmode=rfc2833
canreinvite=no
qualify=no
context=from-internal

Thank you,
Quaz

david55 · April 26, 2022, 3:29pm

Neither.

You should re-implement as chan_pjsip.

However, with chan_sip, you probably never needed insecure=port in the first place. You definitely never needed insecure=invite, and type=friend is probably just a security vulnerability.

I think both forms for specifying port will work, but as there is a specific option, I’d set that.

I don’t think an explicit port makes any difference as far as insecure=port is concerned.

type=friend is a security vulnerability because anyone knowing the section name, who can reach the machine, can make calls from the from-internal context, which is normally allowed to make chargeable calls. It should be type=host.

You should specify disallow=all, and some specific codecs.

david55 · April 26, 2022, 3:47pm

Are there any reasons for setting directmedia and qualify to no? (You’ve used the obsolete name for direct media.)

quazimotto · April 27, 2022, 1:36pm

Dave,

The config that I used is from an Avaya IP Office to Asterisk and Avaya IP Office to NEC SV8100. I am hacking my way through this. I would like to use a PJSIP trunk config to NEC. Do you have a config? Can you point me to a paper explaining in detail the difference between chanel_Sip and PJSIP. and the different programming options for each. I would like to know the differences between friend, peer and host and the requirements to config each one. I bought Asterisk_ The Definitive Guide but I have not gotten to it yet. I am reading "The Linux Command Line " now.

As to directmedia and qualify, I would prefer the server keep control of the calls and like I said, I am trying see my way through this to really understand this technology ( Qualify=60 ). For instance, if you create a new self-signed certificate using OPENSSL or simply go to etc/asterisk/keys, there are 10 files and a directory
( Integration ) with 3 files. Is there a paper, book that explains what each of these files are for and where and how they are used?

I am committed to learning Asterisk and any/all help is appreciated greatly.

Thank You,
Quaz

david55 · April 27, 2022, 3:00pm

No, but it appears to be IP authenticated, single address, so take the trunk examples and strip out all the authentication and registration stuff.

https://wiki.asterisk.org/wiki/display/AST/Migrating+from+chan_sip+to+res_pjsip

github.com

asterisk/asterisk/blob/master/configs/samples/sip.conf.sample#L1234

      
        
            ;        auth = <user>#<md5secret>@<realm>
            ; Example:
            ;auth=mark:[email protected]
            ;
            ; You may also add auth= statements to [peer] definitions
            ; Peer auth= override all other authentication settings if we match on realm
            
            
; -----------------------------------------------------------------------------
            ; DEVICE CONFIGURATION
            ;
            ; SIP entities have a 'type' which determines their roles within Asterisk.
            ; * For entities with 'type=peer':
            ;   Peers handle both inbound and outbound calls and are matched by ip/port, so for
            ;   The case of incoming calls from the peer, the IP address must match in order for
            ;   The invitation to work. This means calls made from either direction won't work if
            ;   The peer is unregistered while host=dynamic or if the host is otherise not set to
            ;   the correct IP of the sender.
            ; * For entities with 'type=user':
            ;   Asterisk users handle inbound calls only (meaning they call Asterisk, Asterisk can't
            ;   call them) and are matched by their authorization information (authname and secret).
            ;   Asterisk doesn't rely on their IP and will accept calls regardless of the host setting

quazimotto · April 27, 2022, 5:18pm

Thanx, David55

quazimotto · April 28, 2022, 2:58pm

David55,

Do you know where I can get the information on the certification files; what they do and where they go?

Also, I cannot get the fax server going for inbound. I followed this:

Create a Virtual Extension

Disable Voicemail
User Manager Setting: Make sure it link to the extension numbers
Submit and Apply Configuration

Edit User

Click “Admin” then “User Manager”
Select the user that was created in the Virtual Extension
Click the “FAX” tab
Select the file format for the received faxes (I chose PDF)
Again, Submit and Apply Configuration

Create Inbound Route for your FAX

Set the DiD number to the Inbound Fax number
Set Destination: to “Fax Recipient” and select the Virtual Extension created from the above
Then, Client the “FAX” tab to continue…
Detect Fax: Enable
Fax Detection Type: SIP
FAX Distination: To Fax Reciient Inbound fax only (599)
Again, Submit and Apply Configuration

Finally, configure Fax Option

Outgoing Email address: “[email protected] domain”
Email address: [email protected]… Recipient email address
Submit and Apply configuration
You’re ready to receive faxes.

I used a Virtual Extension setup as instructed and I get a busy signal. I rebooted system too. Do I need to buy a license for the fax server?

system · May 29, 2022, 2:59pm

This topic was automatically closed 31 days after the last reply. New replies are no longer allowed.