[asterisk-users] srtp/dtls when sip is clear over lo

James Cloos cloos at jhcloos.com
Sat Apr 26 17:25:58 CDT 2014

>>>>> "JColp" == Joshua Colp <jcolp at digium.com> writes:

JColp> The media is not carried over the SIP signaling,

Please give some credit, eh?

Given the sdp-negotiated srtp is not secure unless the sip is carried
over tls, the Best Practice is to require tls (or even sips: uris) to
agree to srtp.

Are you saying that asterisk doesn't care whether the sip is secure and
will happily negotiate srtp depending only on whether the remote is
willing to do so?  (That may come off as harsh; I do not mean it to be
so, since it is what I want. :)

And does anyone here have any operational experience on the matter of
what other endpoints are willing to do in such cases?


James Cloos <cloos at jhcloos.com>         OpenPGP: 0x997A9F17ED7DAEA6

More information about the asterisk-users mailing list