Hi Inaki,
This tool is very useful, as it can automatically detect the problem
and can save a lot of time for detection.
This SIP ALG phenomena is however a plague.
I do not know any situation when this works or when somebody would
really want to use it. All the efforts of the SIP service providers I
know of are directed into disabling them altogether while router
manufacturares are in frenzy to tick another checkbox on their
packaging 'SIP enabled'. These manufacturers spend without any
analysis whatsoever their 8 hour budget on the issue and then move
casually forward leaving havoc behind them.
The only way to eradicate this plague is to move towards the use of
TLS as a standard transport in SIP. With the new design this will be
feasible.
Regards,
Adrian
On Jun 14, 2009, at 2:19 AM, Iñaki Baz Castillo wrote:
Hi, as part of my personal battle against SIP ALG routers, I've
created an
utility to detect such routers:
http://dev.sipdoc.net/wiki/sip-stuff/SIP-ALG-Detector
It has two parts: client and server:
Basically, the client node running into the LAN sends an INVITE to
the server
node (running in a host with public IP).
The request could be modified by the LAN router if SIP ALG is enabled.
The server encodes the received request in Base64 and appends it to
the SIP
response.
The client receives the response, decodes the body and gets the
request as it
arrived to the server.
Then it creates a diff between the original request and the the
request the
server node received. These differences are displayed in the screen.
Both, UDP and TCP, tests are performed.
The client node is coded in Ruby and should work in any operating
system (if
Ruby is installed).
The server node is also coded in Ruby.
For those interested in trying it, I have a server node running in
my personal
server:
87.98.230.161:5060
You can test the client against my server.
Feedback is welcome :)
Regards.
--
Iñaki Baz Castillo <[email protected]>
_______________________________________________
Users mailing list
[email protected]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
_______________________________________________
Users mailing list
[email protected]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
