Asterisk sip insecure
Created by: JustRumours,Last modification on Mon 07 of Apr, 2008 [14:30 UTC] by ibc
Insecure (does not apply to asterisk 1.0.9 and earlier)
port: ignore the port number where request came from
invite: don't require initial INVITE to authenticate
port,invite: don't require initial INVITE to authenticate and ignore the port where the request came from
Example
insecure=port ; Allow matching of peer by IP address without matching port number
insecure=invite ; Do not require authentication of incoming INVITEs
insecure=port,invite ; (both)
Typically used to allow incoming calls (e.g. from FWD) while having a type=friend entry defined with username and password.
See also
- autocreatepeer=yes
Insecure (asterisk 1.0.9 and earlier)
very: ignore authentication (user/password)
yes: ??
Example
insecure=very
insecure=yes ; To match a peer based by IP address only and not port
insecure=very ; To allow registered hosts to call without re-authenticating
Typically used to allow incoming calls (e.g. from FWD) while having a type=friend entry defined with username and password.
Go back to Asterisk sip channels
Comments
333One Way Authentication
In a scenario, where I'm connecting to an ISP, that requires authentication on outgoing (peer) calls, but
will not authenticate on incoming calls, I used insecure=very with good results in the friend context. In this
case, registering with the server does no good. You just have a sip 'friend' entry, and enter a context into
your extensions.conf file for incoming calls, and use the sip.conf context in dial commands.<p>
Does anyone have any examples of where or why or when the other options like invite, port would be used sanely?