[VOIPSEC] What the most popular key exchange method(MIKEY, SDP Security Descriptions, ...) in VoIP marketing ?
Mark Teicher
mht3 at earthlink.net
Fri Jan 13 09:37:43 CST 2006
Since this issue was touched upon..
How do VoIP vendors qualify their products with various firewall vendors from an interoperability point of view?
-----Original Message-----
>From: dennis <m8939605 at yahoo.com.tw>
>Sent: Jan 13, 2006 9:43 AM
>To: Voipsec at voipsa.org
>Subject: Re: [VOIPSEC] What the most popular key exchange method(MIKEY, SDP Security Descriptions, ...) in VoIP marketing ?
>
>Hi all,
>
>I think that there is a Firewall issue here.
>
>To imagine a client A and client B are both behind
>routers, and the routers have NAT/Firewall. If A and B
>run the SIP over TLS and A make a call to B. Because
>the SIP siganl are encrypted, firewall of B's router
>can't inspect SDP for the RTP ports used (ALG), and
>SRTP
>stream can't pass firewall.
>
>The solutions are below:
>1.FWs open all UDP ports for RTP
>2.Routers have TLS connection with proxy and client.
>3.UPnP(Can UPnP solve the issue?)
>
> TLS TLS
>A------->Router------->SIP Proxy
> TLS
>------->Router------>B
>
>
>Best regards,
>Dennis
>
>--- Harry Behrens <hb at snom.de> ??
>
>
>---------------------------------
> in fact no, actually makes life easier for
>signalling (but that isnever a problem with NAT
>anyway).
>On the media side: SRTP is just UDP as before, so it
>stays as stable orbuggy as before...
>
> -h
>
>
>
>___________________________________________________ ??? Yahoo!?????? 7.0??????????? http://messenger.yahoo.com.tw/
>
More information about the Voipsec
mailing list