Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #
- # OpenSIPS residential configuration script
- # by OpenSIPS Solutions <team@opensips-solutions.com>
- #
- # This script was generated via "make menuconfig", from
- # the "Residential" scenario.
- # You can enable / disable more features / functionalities by
- # re-generating the scenario with different options.#
- #
- # Please refer to the Core CookBook at:
- # https://opensips.org/Resources/DocsCookbooks
- # for a explanation of possible statements, functions and parameters.
- #
- ####### Global Parameters #########
- /* uncomment the following lines to enable debugging */
- #debug_mode=yes
- log_level=4
- xlog_level=4
- log_stderror=no
- log_facility=LOG_LOCAL0
- udp_workers=4
- /* uncomment the next line to enable the auto temporary blacklisting of
- not available destinations (default disabled) */
- #disable_dns_blacklist=no
- /* uncomment the next line to enable IPv6 lookup after IPv4 dns
- lookup failures (default disabled) */
- #dns_try_ipv6=yes
- socket=udp:10.20.12.125:5060 # CUSTOMIZE ME
- socket=tcp:10.20.12.125:5060
- socket=tcp:10.20.12.124:5060 as 195.196.197.198 # CUSTOMIZE ME
- #socket=udp:10.20.12.124:5060
- #socket=tls:127.0.0.1:5061 # CUSTOMIZE ME
- ####### Modules Section ########
- #set module path
- mpath="/usr/local//lib64/opensips/modules/"
- #### SIGNALING module
- loadmodule "signaling.so"
- #### StateLess module
- loadmodule "sl.so"
- #### Transaction Module
- loadmodule "tm.so"
- modparam("tm", "fr_timeout", 5)
- modparam("tm", "fr_inv_timeout", 30)
- modparam("tm", "restart_fr_on_each_reply", 0)
- modparam("tm", "onreply_avp_mode", 1)
- #### Record Route Module
- loadmodule "rr.so"
- /* do not append from tag to the RR (no need for this script) */
- #modparam("rr", "append_fromtag", 1)
- #modparam("rr", "enable_double_rr", 0)
- #### MAX ForWarD module
- loadmodule "maxfwd.so"
- #### SIP MSG OPerationS module
- loadmodule "sipmsgops.so"
- #### FIFO Management Interface
- loadmodule "mi_fifo.so"
- modparam("mi_fifo", "fifo_name", "/tmp/opensips_fifo")
- modparam("mi_fifo", "fifo_mode", 0666)
- #### MYSQL module
- loadmodule "db_mysql.so"
- #### HTTPD module
- loadmodule "httpd.so"
- modparam("httpd", "port", 8888)
- #### USeR LOCation module
- loadmodule "usrloc.so"
- modparam("usrloc", "nat_bflag", "NAT")
- modparam("usrloc", "working_mode_preset", "single-instance-sql-write-back")
- modparam("usrloc", "db_url",
- "mysql://opensips:opensipsrw@localhost/opensips") # CUSTOMIZE ME
- #### REGISTRAR module
- loadmodule "registrar.so"
- modparam("registrar", "tcp_persistent_flag", "TCP_PERSISTENT")
- modparam("registrar", "received_avp", "$avp(received_nh)")/* uncomment the next line not to allow more than 10 contacts per AOR */
- #modparam("registrar", "max_contacts", 10)
- #### ACCounting module
- loadmodule "acc.so"
- /* what special events should be accounted ? */
- modparam("acc", "early_media", 0)
- modparam("acc", "report_cancels", 0)
- /* by default we do not adjust the direct of the sequential requests.
- if you enable this parameter, be sure to enable "append_fromtag"
- in "rr" module */
- modparam("acc", "detect_direction", 0)
- #### ALIAS module
- loadmodule "alias_db.so"
- modparam("alias_db", "db_url",
- "mysql://opensips:opensipsrw@localhost/opensips") # CUSTOMIZE ME
- #### DOMAIN module
- loadmodule "domain.so"
- modparam("domain", "db_url",
- "mysql://opensips:opensipsrw@localhost/opensips") # CUSTOMIZE ME
- modparam("domain", "db_mode", 1) # Use caching
- modparam("auth_db|usrloc", "use_domain", 1)
- #### NAT modules
- loadmodule "nathelper.so"
- modparam("nathelper", "natping_interval", 10)
- modparam("nathelper", "ping_nated_only", 1)
- modparam("nathelper", "sipping_bflag", "SIP_PING_FLAG")
- modparam("nathelper", "sipping_from", "sip:pinger@127.0.0.1") #CUSTOMIZE ME
- modparam("nathelper", "received_avp", "$avp(received_nh)")
- loadmodule "rtpengine.so"
- modparam("rtpengine", "rtpengine_sock", "udp:localhost:2223") # CUSTOMIZE ME
- #### DYNAMMIC ROUTING module
- loadmodule "drouting.so"
- modparam("drouting", "db_url",
- "mysql://opensips:opensipsrw@localhost/opensips") # CUSTOMIZE ME
- #### MI_HTTP module
- loadmodule "mi_http.so"
- loadmodule "proto_udp.so"
- loadmodule "proto_tcp.so" loadmodule "proto_tls.so"
- loadmodule "tls_mgm.so"
- modparam("tls_mgm","server_domain", "default")
- modparam("tls_mgm","match_ip_address", "[default]*")
- modparam("tls_mgm","verify_cert", "[default]1")
- modparam("tls_mgm","require_cert", "[default]0")
- modparam("tls_mgm","tls_method", "[default]TLSv1")
- modparam("tls_mgm","certificate", "[default]/etc/opensips/tls/user/user-cert.pem")
- modparam("tls_mgm","private_key", "[default]/etc/opensips/tls/user/user-privkey.pem")
- modparam("tls_mgm","ca_list", "[default]/etc/opensips/tls/user/user-calist.pem")
- ####### Routing Logic ########
- # main request routing logic
- route{
- # initial NAT handling; detect if the request comes from behind a NAT
- # and apply contact fixing
- force_rport();
- #if (nat_uac_test(23)) {
- if ($si=~'^10\.193\.') {
- if(remove_hf("Contact"))
- {
- # User Agent header removed
- append_hf("Contact: sip:$fU@195.74.132.102:5060;transport=tcp\r\n");
- }
- setflag("NAT");
- }
- if (!mf_process_maxfwd_header(10)) {
- send_reply(483,"Too Many Hops");
- exit;
- }
- if (has_totag()) {
- # handle hop-by-hop ACK (no routing required)
- if ( is_method("ACK") && t_check_trans() ) {
- t_relay();
- exit;
- }
- # sequential request within a dialog should
- # take the path determined by record-routing
- if ( !loose_route() ) {
- # we do record-routing for all our traffic, so we should not
- # receive any sequential requests without Route hdr.
- #send_reply(404,"Not here mate");
- #exit;
- xlog("loose routing failed\n");
- } else {
- xlog("loose routing success\n");
- }
- if (is_method("BYE")) {
- # do accounting even if the transaction fails
- do_accounting("log","failed");
- }
- if (check_route_param("nat=yes"))
- setflag("NAT");
- # route it out to whatever destination was set by loose_route()
- # in $du (destination URI).
- route(relay);
- exit;
- }
- # CANCEL processing
- if (is_method("CANCEL")) {
- if (t_check_trans())
- t_relay();
- exit;
- }
- # absorb retransmissions, but do not create transaction
- t_check_trans();
- if ( !(is_method("REGISTER") || is_from_gw() ) ) {
- if (is_from_local()) {
- xlog("local call\n");
- } else {
- # if caller is not local, then called number must be local
- if (!is_uri_host_local()) {
- send_reply(403,"Relay Forbidden");
- exit;
- }
- }
- }
- # preloaded route checking
- if (loose_route()) {
- xlog("L_ERR",
- "Attempt to route with preloaded Route's [$fu/$tu/$ru/$ci]");
- if (!is_method("ACK"))
- send_reply(403,"Preload Route denied");
- exit;
- }
- # record routing
- if (!is_method("REGISTER|MESSAGE"))
- record_route();
- # account only INVITEs
- if (is_method("INVITE")) {
- do_accounting("log");
- }
- if (!is_uri_host_local()) {
- append_hf("P-hint: outbound\r\n");
- # if you have some interdomain connections via TLS
- ## CUSTOMIZE IF NEEDED
- ##if ($rd=="tls_domain1.net"
- ## || $rd=="tls_domain2.net"
- ##) {
- ## force_send_socket("tls:127.0.0.1:5061"); # CUSTOMIZE
- ##}
- route(relay);
- }
- # requests for my domain
- if (is_method("PUBLISH|SUBSCRIBE")) {
- send_reply(503, "Service Unavailable");
- exit;
- }
- if (is_method("REGISTER")) {
- if ($socket_in(proto) == "tcp" || $socket_in(proto) == "tls")
- setflag("TCP_PERSISTENT");
- if (isflagset("NAT")) {
- setbflag("SIP_PING_FLAG");
- }
- # store the registration and generate a SIP reply
- if (!save("location"))
- xlog("failed to register AoR $tu\n");
- exit;
- }
- if ($rU==NULL) {
- # request with no Username in RURI
- send_reply(484,"Address Incomplete");
- exit;
- }
- # apply DB based aliases
- alias_db_lookup("dbaliases");
- if ($rU=~"^\+[1-9][0-9]+$") {
- strip(1);
- if (!do_routing(0)) {
- send_reply(500,"No PSTN Route found");
- exit;
- }
- route(relay);
- exit;
- }
- # do lookup with method filtering
- if (!lookup("location","m")) {
- t_reply(404, "Not Found");
- exit;
- }
- if (isbflagset("NAT")) setflag("NAT");
- # when routing via usrloc, log the missed calls also
- do_accounting("log","missed");
- route(relay);
- }
- route[relay] {
- # for INVITEs enable some additional helper routes
- if (is_method("INVITE")) {
- if (isflagset("NAT")) {
- rtpengine_manage("media-address=195.74.132.102");
- } else {
- rtpengine_manage();
- }
- t_on_branch("per_branch_ops");
- t_on_reply("handle_nat");
- t_on_failure("missed_call");
- }
- if (isflagset("NAT")) {
- add_rr_param(";nat=yes");
- }
- if (!t_relay()) {
- send_reply(500,"Internal Error");
- }
- exit;
- }
- branch_route[per_branch_ops] {
- xlog("new branch at $ru\n");
- }
- onreply_route[handle_nat] {
- #if (nat_uac_test(1))
- # fix_nated_contact();
- if ( isflagset("NAT") )
- rtpengine_manage("media-address=10.20.12.125");
- #rtpengine_manage();
- xlog("incoming reply\n");
- }
- failure_route[missed_call] {
- if (t_was_cancelled()) {
- exit;
- }
- # uncomment the following lines if you want to block client
- # redirect based on 3xx replies.
- ##if (t_check_status("3[0-9][0-9]")) {
- ##t_reply(404,"Not found");
- ## exit;
- ##}
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement