| Summary: | ASTERISK-17631: Peers cannot send valid calls | ||
| Reporter: | Private Name (falves11) | Labels: | |
| Date Opened: | 2011-03-31 22:18:34 | Date Closed: | 2011-06-07 14:01:01 |
| Priority: | Major | Regression? | No |
| Status: | Closed/Complete | Components: | Channels/chan_sip/General |
| Versions: | 1.4.40 | Frequency of Occurrence | |
| Related Issues: | |||
| Environment: | Attachments: | ||
| Description: | If I define a sip peer with host=x.x.xx.x, then Asterisk should not check for authentication, because I already explicitly defined the IP address. But Asterisk gives me this error, based on the ANI. chan_sip.c:15675 handle_request_invite: Failed to authenticate user "7274907254"<sip:17274907254@Ip.add.rr.ess>;tag=9a12ec7a In my sip conf, I have: autocreatepeer=no allowguest=no ****** ADDITIONAL INFORMATION ****** <removed non-applicable note -- lmadsen/> Further explanation: In production, we need to receive valid calls from IP's only, without registration, and we know them all, and we do crate peers with host=ip.addr.e.ss Additionally, we need to allow only calls from registered peers. But it seems to be impossible to do both at the same time.If some hacker finds out the ani of a valid account, he/she may send calls and the calls need to terminate, since we need to run with allowguest=yes, in order to receive the calls from peers where we know the IP address but there is no registration The order of the checking should be, check if IP is known first, and don't check any further | ||
| Comments: | By: Private Name (falves11) 2011-03-31 22:54:38 Please close the case. | ||