Page Index Toggle Pages: 1 ... 7 8 [9] 10  Send TopicPrint
Very Hot Topic (More than 25 Replies) Encryption: TLS, SRTP & ZRTP (Read 275009 times)
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #120 - 02. Mar 2012 at 15:10
Print Post  
There is no complete "200 OK" message received.
Is there a way to test with that server for my own? Can I get an account? I don't need to initiate outgoing calls. Registration is all I want to test with.
  
Back to top
WWW  
IP Logged
 
Mihail
YaBB Newbies
*
Offline


Wunderbar!!!

Posts: 8
Location: Ukraine
Joined: 27. Feb 2012
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #121 - 02. Mar 2012 at 15:30
Print Post  
After Freeswitch restart, registration became successful.
In att PhonerLite debug.
  

success_register.txt ( 4 KB | Downloads )
Back to top
 
IP Logged
 
Mihail
YaBB Newbies
*
Offline


Wunderbar!!!

Posts: 8
Location: Ukraine
Joined: 27. Feb 2012
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #122 - 02. Mar 2012 at 15:41
Print Post  
Phoner Admin wrote on 02. Mar 2012 at 15:10:
There is no complete "200 OK" message received.
Is there a way to test with that server for my own? Can I get an account? I don't need to initiate outgoing calls. Registration is all I want to test with.


Check your inbox for account details.
  
Back to top
 
IP Logged
 
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #123 - 02. Mar 2012 at 16:07
Print Post  
Thanks, but registration fails, because the server demands a client certificate and doesn't accept the one I provide.
If your registration works now, maybe it is a problem in Freeswitch?
  
Back to top
WWW  
IP Logged
 
Mihail
YaBB Newbies
*
Offline


Wunderbar!!!

Posts: 8
Location: Ukraine
Joined: 27. Feb 2012
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #124 - 02. Mar 2012 at 16:21
Print Post  
Phoner Admin wrote on 02. Mar 2012 at 16:07:
Thanks, but registration fails, because the server demands a client certificate and doesn't accept the one I provide.
If your registration works now, maybe it is a problem in Freeswitch?


Oh, sorry, I changed the configuration, now FS does not request certificate.
But, you are right, now problem does not occur.
  
Back to top
 
IP Logged
 
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #125 - 02. Mar 2012 at 16:25
Print Post  
Now it works here well too. Are there any free numbers I can call to check SRTP/ZRTP?
  
Back to top
WWW  
IP Logged
 
Mihail
YaBB Newbies
*
Offline


Wunderbar!!!

Posts: 8
Location: Ukraine
Joined: 27. Feb 2012
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #126 - 05. Mar 2012 at 16:02
Print Post  
Hello!
It starts again (broken 200 ok messages):

16:59:12,249: R: 120 bytes parse failed X.X.X.X:5061 (TLS)
SIP/2.0 200 OK
Via: SIP/2.0/TLS Y.Y.Y.Y:54339;branch=z9hG4bK00a0c06f4165e1118bc105fce7032a59;rport=54339;alias

-------------------------------------------
16:59:12,249: R: 53 bytes parse failed X.X.X.X:5061 (TLS)
From: <sip:1000@X.X.X.X>;tag=2032818304
  
Back to top
 
IP Logged
 
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #127 - 05. Mar 2012 at 20:12
Print Post  
I think I found a possible bug. Can you please download the latest beta version?
  
Back to top
WWW  
IP Logged
 
Mihail
YaBB Newbies
*
Offline


Wunderbar!!!

Posts: 8
Location: Ukraine
Joined: 27. Feb 2012
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #128 - 06. Mar 2012 at 07:14
Print Post  
Phoner Admin wrote on 05. Mar 2012 at 20:12:
I think I found a possible bug. Can you please download the latest beta version?


Everything looks fine. 
I tried to register PL 1.96 with FS - an error the same.
Immediately after that (nothing changing in Freeswitch) tried 1.97Beta - registration successful.
  
Back to top
 
IP Logged
 
Mihail
YaBB Newbies
*
Offline


Wunderbar!!!

Posts: 8
Location: Ukraine
Joined: 27. Feb 2012
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #129 - 06. Mar 2012 at 07:37
Print Post  
Phoner Admin wrote on 02. Mar 2012 at 16:25:
Now it works here well too. Are there any free numbers I can call to check SRTP/ZRTP?


Check your inbox for test account details.
  
Back to top
 
IP Logged
 
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #130 - 06. Mar 2012 at 08:14
Print Post  
Nice to hear that. That was no problem related to TLS, but normal TCP fragmentation.
I will test SRTP/ZRTP later. Thanks.
  
Back to top
WWW  
IP Logged
 
botyhc
Junior Member
**
Offline


Phoner is great!

Posts: 95
Joined: 02. May 2010
Re: Encryption: TLS, SRTP & ZRTP
Reply #131 - 22. Mar 2012 at 04:35
Print Post  
What is ZRTP masquerading ? 

I think the help page on the website needs a thorough update.
Or if you can move to a wiki, users can also update. 

Shouldn't phonerlite go into a next phase by the way with multiple account capability ?!
  
Back to top
 
IP Logged
 
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #132 - 22. Mar 2012 at 08:41
Print Post  
ZRTP negotiation packets are no real RTP packets. Some servers (e.g. Freeswitch) don't forward these messages. Masquerading might help in these situations. A description can be found here.
PhonerLite is just a hobby of mine. Only programming makes fun - writing documentation is no fun for me Wink

It is not planned to support multiple profiles simultaneously in near future. Sorry.
  
Back to top
WWW  
IP Logged
 
botyhc
Junior Member
**
Offline


Phoner is great!

Posts: 95
Joined: 02. May 2010
Re: Encryption: TLS, SRTP & ZRTP
Reply #133 - 15. Oct 2012 at 08:06
Print Post  
Please add capability to have mandatory SRTP, ZRTP (just like "connection type is fixed" for TLS etc.). 
So if SRTP can't be done, then it won't do the call. Similarly for ZRTP.
Please add like "RTP encryption is fixed".
This is there in many major hard phones as security feature
  
Back to top
 
IP Logged
 
Phoner Admin
YaBB Administrator
*****
Offline



Posts: 11527
Location: Germany
Joined: 12. Oct 2003
Gender: Male
Re: Encryption: TLS, SRTP & ZRTP
Reply #134 - 15. Oct 2012 at 13:16
Print Post  
ZRTP will be negotiated after call establishment. So if you are initiate a call and the remote party answers the call, media path is established and ZRTP negotiation is done. If no ZRTP could be established, you want to disconnect the call automatically? I don't like that! The remote user doesn't know why you are disconnect the call. Both parties say there "hello" and then the call drops? Sorry, but I won't do that.
If you really need such feature, just use one of that other implementations or hard phones.
  
Back to top
WWW  
IP Logged
 
Page Index Toggle Pages: 1 ... 7 8 [9] 10 
Send TopicPrint