|
|
@@ -33,13 +33,13 @@ require_certificate = yes
|
|
|
|
|
|
# This is an example server domain for TLS connections
|
|
|
# received from the loopback interface. We allow
|
|
|
-# the use of SSLv2 and SSLv3 protocols here, we do
|
|
|
+# the use of TLSv1 protocols here, we do
|
|
|
# not require that clients present client certificates
|
|
|
# but if they present it it must be valid. We also use
|
|
|
# a special certificate and CA list for loopback
|
|
|
# interface.
|
|
|
#
|
|
|
-#[server:127.0.0.1:5061]
|
|
|
+#[server:5.6.7.8:5061]
|
|
|
#method = TLSv1
|
|
|
#verify_certificate = yes
|
|
|
#require_certificate = no
|
|
|
@@ -48,9 +48,11 @@ require_certificate = yes
|
|
|
#verify_depth = 3
|
|
|
#ca_list = local_ca.pem
|
|
|
#crl = local_crl.pem
|
|
|
+#server_name = kamailio.org
|
|
|
+#server_id = kamailio.org
|
|
|
|
|
|
-# Special settings for the example.sip (1.2.3.4) public SIP
|
|
|
-# server. We do not verify the certificate of the
|
|
|
+# Special settings for connecting to the example.sip (1.2.3.4)
|
|
|
+# public SIP server. We do not verify the certificate of the
|
|
|
# server because it can be expired. The server
|
|
|
# implements authentication using SSL client
|
|
|
# certificates so configure the client certificate
|
|
|
@@ -62,3 +64,5 @@ require_certificate = yes
|
|
|
#private_key = /usr/local/etc/kamailio/tls/example_key.pem
|
|
|
#ca_list = /usr/local/etc/kamailio/tls/example_ca.pem
|
|
|
#crl = /usr/local/etc/kamailio/tls/example_crl.pem
|
|
|
+#server_name = example.sip
|
|
|
+#server_id = example.sip
|
Daniel-Constantin Mierla