Hi, <span id="result_box" class="" lang="en"><span class="hps"></span><span class="hps"></span><span></span> <span class="hps">I</span> <span class="hps">tried it</span> <span class="hps">the implementation of</span> <span class="hps">TLS</span> <span class="hps">in</span> <span class="hps">asterisk</span> <span class="hps">1.8.4.3</span> <span class="hps">on</span> <span class="hps">ubuntu</span> <span class="hps">10.04.</span> <span class="hps">I follow the</span> <span class="hps">tutorial</span><span>:</span> <span class="hps"><a href="https://wiki.asterisk.org/wiki/display/AST/Secure+Calling+Tutorial">https://wiki.asterisk.org/wiki/display/AST/Secure+Calling+Tutorial</a></span><span>.</span> <span class="hps">and</span> <span class="hps">I use</span> <span class="hps">blink</span> <span class="hps">as a</span> <span class="hps">softphone</span> <span class="hps">in</span> <span class="hps">ny</span> <span class="hps">client</span> <span class="hps">in windows</span><span>.</span> <span class="hps">for</span> <span class="hps">regular</span> <span class="hps">communication</span> <span class="hps">process</span> <span class="hps atn">(</span><span class="">without</span> <span class="hps">TLS</span><span>)</span> <span class="hps">smoothly</span><span>,</span> <span class="hps">but</span> <span class="hps">when it</span> <span class="hps">just follow</span> <span class="hps">the tutorial</span><span class="">, it is always</span> <span class="hps">error</span> <span class="hps">on</span> <span class="hps">his</span> <span class="hps">softphone</span><span class="">:</span> <span class="hps">transport error</span><span>.</span><br>
<br><span class="hps">my configuration</span> <span class="hps">like this</span><span class="">:</span><br><br><span class="hps">certificate</span> <span class="hps">for</span> <span class="hps">the server :</span><span> .</span> <span class="hps">/</span><span class="hps">ast_tls_cert</span><span class="atn"> -</span><span>C</span><span></span> <span class="hps">10.4.71.27</span> <span class="hps atn"></span></span><span id="result_box" class="" lang="en"><span class="hps atn"><span id="result_box" class="" lang="en"><span class="atn">-</span><span>O </span></span>&quot;</span><span>My</span> <span class="hps">Super</span> <span class="hps">Company&quot;</span><span class="atn"> -</span><span>d</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk</span>/<span class="hps">keys</span><br>
<br><span class="hps">certificate</span> <span class="hps">for</span> <span class="hps">Client 1</span><span> :</span><span> .</span> <span class="hps">/</span><span class="hps">ast_tls_cert</span><span class="atn"> -</span><span>m</span> <span class="hps">client</span><span class="atn"> -</span><span>c</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk/</span><span class="hps">keys</span><span class="hps">/</span><span class="hps">ca.crt </span><span class="atn">-</span><span>k</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk/</span><span class="hps">keys</span><span class="hps">/</span><span class="hps">ca.key</span><span class="atn"> -</span><span class="">C</span><span class="atn"> </span><span class="hps">10.4.71.24</span> -O <span class="hps atn">&quot;</span><span>My</span> <span class="hps">Super</span> <span class="hps">Company&quot;</span><span class="atn"> -</span><span>d</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk/</span><span class="hps atn">keys -</span><span>o</span> <span class="hps">1001</span><br>
<br><span class="hps">certificate</span> <span class="hps">for</span> <span class="hps">Client 2</span><span> :</span><span> </span></span><span id="result_box" class="" lang="en"><span><span id="result_box" class="" lang="en"><span>.</span> <span class="hps">/</span><span class="hps">ast_tls_cert</span><span class="atn"> -</span><span>m</span> <span class="hps">client</span><span class="atn"> -</span><span>c</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk/</span><span class="hps">keys</span><span class="hps">/</span><span class="hps">ca.crt </span><span class="atn">-</span><span>k</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk/</span><span class="hps">keys</span><span class="hps">/</span><span class="hps">ca.key</span><span class="atn"> -</span><span class="">C</span><span class="atn"> </span><span class="hps">10.4.71.23</span> -O <span class="hps atn">&quot;</span><span>My</span> <span class="hps">Super</span> <span class="hps">Company&quot;</span><span class="atn"> -</span><span>d</span> <span class="hps">/</span><span class="hps">etc/</span><span class="hps">asterisk/</span><span class="hps atn">keys -</span><span>o</span> <span class="hps">1002</span></span></span><span class="hps"></span><br>
<br><span class="hps">sip.conf</span><span>:</span><br><br><span class="hps atn">[</span><span>general]</span><br><span class="hps">context =</span> <span class="hps">default</span><br><span class="hps">udpbindaddr</span> <span class="hps">=</span> <span class="hps">0.0.0.0</span><br>
<span class="hps">tcpenable</span> <span class="hps">= no</span><br><span class="hps">tcpbindaddr</span> <span class="hps">=</span> <span class="hps">0.0.0.0</span><br><span class="hps">allowguest</span> <span class="hps">= no</span><br>
<span class="hps">allow =</span> <span class="hps">ulaw</span><br><span class="hps">allow =</span> <span class="hps">alaw</span><br><span class="hps">allow =</span> <span class="hps">gsm</span><br><span class="hps">allow =</span> <span class="hps">g722</span><br>
<br><span class="hps">tlsenable</span> <span class="hps">= yes</span><br><span class="hps">tlsbindaddr</span> <span class="hps">=</span> <span class="hps">0.0.0.0</span><br><span class="hps">tlscertfile</span> <span class="hps">=</span> <span class="hps">/</span> <span class="hps">etc /</span> <span class="hps">asterisk /</span> <span class="hps">keys</span> <span class="hps">/</span> <span class="hps">asterisk.pem</span><br>
<span class="hps">tlscafile</span> <span class="hps">=</span> <span class="hps">/</span> <span class="hps">etc /</span> <span class="hps">asterisk /</span> <span class="hps">keys</span> <span class="hps">/</span> <span class="hps">ca.crt</span><br>
<span class="hps">tlscipher</span> <span class="hps">=</span> <span class="hps">ALL</span><br><span class="hps">tlsclientmethod</span> <span class="hps">=</span> <span class="hps">TLSv1</span><br><br><span class="hps atn">[</span><span>1001]</span><br>
<span class="hps">context =</span> <span class="hps">default</span><br><span class="hps">type =</span> <span class="hps">friend</span><br><span class="hps">username =</span> <span class="hps">1001</span><br><span class="hps">secret</span> <span class="hps">= 1000</span><br>
<span class="hps">dtmfmode</span> <span class="hps">=</span> <span class="hps">rfc2833</span><br><span class="hps">callerid</span> <span class="hps">=</span> <span class="hps">1001</span><br><span class="hps">host =</span> <span class="hps">dynamic</span><br>
<span class="hps">transport</span> <span class="hps">=</span> <span class="hps">tls</span><br><br><span class="hps atn">[</span><span>1002</span><span>]</span><br><span class="hps">context =</span> <span class="hps">default</span><br>
<span class="hps">type =</span> <span class="hps">friend</span><br><span class="hps">username =</span> <span class="hps">1002</span><br><span class="hps">secret =</span> <span class="hps">1002</span><br><span class="hps">dtmfmode</span> <span class="hps">=</span> <span class="hps">rfc2833</span><br>
<span class="hps">host =</span> <span class="hps">dynamic</span><br><span class="hps">transport</span> <span class="hps">=</span> <span class="hps">tls</span><br><br><br><span class="hps">extensions.conf</span><span>:</span><br>
<br><span class="hps atn">[</span><span>general]</span><br><span class="hps">static</span> <span class="hps">= yes</span><br><span class="hps">WriteProtect</span> <span class="hps">= no</span><br><br><span class="hps atn">[</span><span>default]</span><br>
<span class="hps">exten</span> <span class="hps">=</span><span>&gt;</span> <span class="hps">1001.1</span><span>,</span> <span class="hps">Dial</span> <span class="hps atn">(</span><span>SIP/1001</span><span>, 30</span><span>,</span> <span class="hps">tr</span><span>)</span><br>
<span class="hps">exten</span> <span class="hps">=</span><span>&gt;</span> <span class="hps">1001.2</span><span>,</span> <span class="hps">Hangup</span><br><span class="hps">exten</span> <span class="hps">=</span><span>&gt;</span> <span class="hps">1002.1</span><span>,</span> <span class="hps">Dial</span> <span class="hps atn">(</span><span>SIP/1002</span><span>, 30</span><span>,</span> <span class="hps">tr</span><span>)</span><br>
<span class="hps">exten</span> <span class="hps">=</span><span>&gt;</span> <span class="hps">1002.2</span><span>,</span> <span class="hps">Hangup</span><br><br><br><span class="hps">anyone know where&#39;s my mistake?<br>
thanks.<br></span><span class="hps"></span></span>