FreePBX 17 TLS OK, but no SRTP

I am not sure what is causing this issue

Certificates installed,
HTTPS, working
SIP trunk connects
Extention connects

but with SRTP enabled on both client and server i get the following error

[2025-01-17 17:32:58] VERBOSE[680969] netsock2.c: Using SIP RTP Audio TOS bits 184
[2025-01-17 17:32:58] VERBOSE[680969] netsock2.c: Using SIP RTP Audio CoS mark 5
[2025-01-17 17:32:58] ERROR[680969] res_pjsip_session.c: 100: Couldn’t negotiate stream 0:audio-0:audio:sendrecv (nothing)

am i missing something? I had this working on FreePBX 16 no issue. the settings seem the same but its not working.

Check you have the srtp libraries:

apt list | grep libsrtp2-1
libsrtp2-1/stable,stable,stable,now 2.5.0-3 amd64 [installed,automatic]

im guessing by your note that you have them installed, and by my note, i dont have them installed…

apt list | grep libsrtp2-1

WARNING: apt does not have a stable CLI interface. Use with caution in scripts.

libsrtp2-1/stable,stable 2.5.0-3 amd64

I wonder why by default that this wouldn’t be incluses in the installer, im going to ensure installation.

So I have installed it and now I am getting SSL Errors, was there a specific way to install this?

WARNING[1911] pjproject: SSL SSL_ERROR_SSL (Handshake): Level: 0 err: <167773200> <error:0A000410:SSL routines::sslv3 alert handshake failure> len: 0 peer:

Or will i need to redo my certificates? (doing this now just in case)

So after doing this the following needed to be looked over and or reconfigured:

Certificate reinstalled (or refreshed if you are using Let’s Encrypt [LE]) I am using Cloudflare, so i uninstalled and regernerated it.
FQDN went missing in HTTPS setup, put it back in during the reninstallation
after the the usual fwconsole restart (you need to restart asterisk for SSL/TLS Changes)

This along with installing the aforementioned packages, everything is working!

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.