Talk:VoIP Phones - Asterisk: Difference between revisions
Content deleted Content added
SimonArlott (talk | contribs) No edit summary |
SimonArlott (talk | contribs) No edit summary |
||
| (One intermediate revision by the same user not shown) | |||
| Line 15: | Line 15: | ||
== Authentication == |
== Authentication == |
||
*Voiceless must authenticated so that calls are recognised as the above peer section. |
*Voiceless must authenticated so that calls are recognised as the above peer section. |
||
| ⚫ | |||
*There are two options: either detect Voiceless and ask it to authenticate, or request that every rejected INVITE from all sources authenticates. |
|||
| ⚫ | |||
=== Authenticate Everyone === |
|||
*This is the more secure option as it stops your usernames from being enumerated by brute force. |
|||
*You can't allow a default guest context (unauthenticated calls) or calls from Voiceless will use it. |
|||
<pre> |
<pre> |
||
[general] |
[general] |
||
allowguest=no |
|||
alwaysauthreject=yes |
|||
match_auth_username=yes |
match_auth_username=yes |
||
</pre> |
</pre> |
||
=== Authenticate Voiceless === |
|||
*This is the more complex option as you need to list every Voiceless name. |
|||
*It is the only option if you need to allow the default guest context (unauthenticated calls). |
|||
<pre> |
|||
[general] |
|||
; allowguest=yes |
|||
; alwaysauthreject=no |
|||
match_auth_username=yes |
|||
[aaisp-voiceless] |
|||
type=peer |
|||
md5secret=intentionally_invalid_md5_string |
|||
[aaisp-voiceless-a4](aaisp-voiceless) |
|||
host=a4.voiceless.aa.net.uk |
|||
defaultip=81.187.30.111 |
|||
[aaisp-voiceless-b4](aaisp-voiceless) |
|||
host=b4.voiceless.aa.net.uk |
|||
defaultip=81.187.30.113 |
|||
[aaisp-voiceless-c4](aaisp-voiceless) |
|||
host=c4.voiceless.aa.net.uk |
|||
defaultip=81.187.30.112 |
|||
[aaisp-voiceless-d4](aaisp-voiceless) |
|||
host=d4.voiceless.aa.net.uk |
|||
defaultip=81.187.30.114 |
|||
</pre> |
|||
= Outgoing Calls = |
= Outgoing Calls = |
||