![]() ![]() Set up the account with the usual SIP settings, but include these specific settings: Set Allow Non-Encrypted Media (Opportunisitic SRTP) to No. Set Media Encryption to SRTP via in-SDP (recommended). Click on the Advanced tab when editing an extension. Modify each extension that requires TLS support. If the PJSIP option is greyed out, try restarting Asterisk to ensure that the TLS settings from the previous section are loaded. Set the Default TLS Port Assignment to PJSIP. In the Security Settings section, set both Allow Anonymous Inbound SIP Calls and Allow SIP Guests to No. In the 0.0.0.0 (tls) section, verify that the Port to Listen On is set to 5061. In the Transports section, set tls - 0.0.0.0 - All to Yes. Set Verify Client to No and Verify Server to Yes. In the TLS/SSL/SRTP Settings section, select the appropriate certificate in the Certificate Manager dropdown menu. ![]() Click Submit and Apply if the following sections do not show. ![]() In the Misc PJSip Settings section, set Show Advanced Settings to Yes. If not, set up the server with a LetsEncrypt cert in Admin > Certificate Management.Ĭlick on the SIP Settings tab. These instructions assume that the server already has a valid certificate. This requires configuration on both the FreePBX server and endpoint. Endpoints can connect to FreePBX with encrypted connections. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |