[general] context=invalid allowguest=no allowoverlap=no tcpenable=no tlsenable=yes udpbindaddr=192.168.0.177 tcpbindaddr=192.168.0.177 tlsbindaddr=192.168.0.177 transport=udp srvlookup=yes tos_sip=cs3 tos_audio=ef disallow=all allow=ulaw allow=alaw allow=ilbc allow=gsm relaxdtmf=yes dtmfmode = rfc2833 alwaysauthreject = yes rtptimeout=300 rtpholdtimeout=600 localnet=192.168.0.0/255.255.0.0 localnet=10.0.0.0/255.0.0.0 localnet=172.16.0.0/12 directmedia=no nat=force_rport,comedia ;; TLS config tlscertfile=/etc/asterisk/ssl/myfile tlsprivatekey=/etc/asterisk/ssl/myfile.key tlscafile=/etc/asterisk/ssl/myca tlsdontverifyserver=yes tlscipher=ALL ; you may adjust it to avoid weak cyphers tlsclientmethod=tlsv1,sslv2 ; If left unspecified, the default is sslv2 [authentication]