<br>
I went over the code. AES128 is the only algorithm that is suppored
today. More importantly there are some concerns on the vulnerability as
discussed in
<a href="http://lists.digium.com/pipermail/asterisk-security/2005-August/000060.html">http://lists.digium.com/pipermail/asterisk-security/2005-August/000060.html</a>.
People are using UDP VPNs to satisfy customer requirements.
<a href="http://lists.digium.com/pipermail/asterisk-users/2005-August/120293.html">http://lists.digium.com/pipermail/asterisk-users/2005-August/120293.html</a><br>
<br>
Thanks<br>
<br>
-Scott<br>
<br>
------------------------------<br>
<br>
Message: 6<br>
Date: Wed, 28 Sep 2005 19:09:17 -0500<br>
From: Andy Hamilton <<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:ciscophonefreak@gmail.com">ciscophonefreak@gmail.com</a>><br>
Subject: Re: [Asterisk-Users] Re: Voice Encryption<br>
To: Asterisk Users Mailing List - Non-Commercial Discussion<br>
<<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:asterisk-users@lists.digium.com">asterisk-users@lists.digium.com</a>><br>
Message-ID: <<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:6d720d7f0509281709354ff0c8@mail.gmail.com">6d720d7f0509281709354ff0c8@mail.gmail.com</a>><br>
Content-Type: text/plain; charset=ISO-8859-1<br>
<br>
> Does Asterisk support encryption of voice traffic? I found following wiki<br>
> that describes IAX RSA authentication. I was able to implement the<br>
> public/private key authentication among three Asterisk servers connected<br>
> using IAX protocol. I am not certain if voice traffic can also be encrypted<br>
> among the Asterisk servers. Your help is highly appreciated.<br>
<br>
There has been a little discussion of this topic on the<br>
asterisk-security list somewhat recently.<br>
You may want to look at the message archive from August (<br>
<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://lists.digium.com/pipermail/asterisk-security/2005-August/thread.html" target="_blank">http://lists.digium.com/pipermail/asterisk-security/2005-August/thread.html
</a><br>
) as well as the one from September.<br>
<br>
Hope this offers a little help; as someone mentioned, not much<br>
documentation is out there.<br>
>From the August thread:<br>
<br>
>Basically it's an automatic features (CVS-HEAD only, btw) where anytime<br>
>a pair of IAX peers have encryption set to "yes" (or, as I understand<br>
>it, a mutually-agreed-upon and supported algorithm) then it just happens<br>
>automagically.<br>
(Brian Capouch)<br>
<br>
-a