On 14 okt 2010, at 11.08, Tony Graziano wrote: > I want to start using TLS on the SipXBridge SIPtrunk and want to use the > certificate signed by the trusted CA, so I guess it's the trusted CA:s root > certificate that I should install in the TLS peer? (as well as installing the > peers CA cert in SipX using the "Import" option on the "Certificate > Authorities" section of the Web GUI)
> I think that needs a wiki article. You also need to make sure you have a > _sip._tls DNS SRV record pointing to the port (default) 5061 and that your > firewall (if the peer is across the internet) allows and nat's it. I've been > meaning to get a tracker on DNS, going forward sipx needs to generate that > record by default and probably an A record for the domain (judging by logs > getting cut in the proxy in the dev version). Do I need the SRV record for TLS? The TLS connection is between the VSP and my SipXBridge only. Or is TLS not natively supported in SipXproxy over port 5061? I thought that SipXbridge used 5081 for TLS? (default). /Staffan -- Staffan Kerker mail/sip/xmpp: [email protected] "There is absolutely no money above the 5th fret..." /Donald "Duck" Dunn
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
