TLS interconnection
Page 1 of 1
TLS interconnection
Hi,
I need your help to understand how TLS is working!
I try to establish a TLS trunk between two of our SBC
For both SBC, I followed your wiki page to generate :
- Private Key (.key file)
- Certificate (.crt file)
- Self-signed Certificate (.csr file)
|-> These 3 files are located in /lib/tb/toolpack/pkg/ssl_certificate/
- Create a local certificate with local informations
- Create a trusted certificate with remote information (crt file)
- Create a TLS Profile with local and trusted certificate in there.
- Create a Transport Server type TLS with the profile newly created
- Create NAP with port 5061 using TLS Transport.
- Validate and activate configuration.
But my NAPs are still down on both sides...
I did check the firewall and port 5061 is open for both sides.
Do I need to declare certificates in the CSR file?
Do you think I missed something?
Thanks for your help
I need your help to understand how TLS is working!
I try to establish a TLS trunk between two of our SBC
For both SBC, I followed your wiki page to generate :
- Private Key (.key file)
- Certificate (.crt file)
- Self-signed Certificate (.csr file)
|-> These 3 files are located in /lib/tb/toolpack/pkg/ssl_certificate/
- Create a local certificate with local informations
- Create a trusted certificate with remote information (crt file)
- Create a TLS Profile with local and trusted certificate in there.
- Create a Transport Server type TLS with the profile newly created
- Create NAP with port 5061 using TLS Transport.
- Validate and activate configuration.
But my NAPs are still down on both sides...
I did check the firewall and port 5061 is open for both sides.
Do I need to declare certificates in the CSR file?
Do you think I missed something?
Thanks for your help
Last edited by ahsanul.moyeen on Thu May 27, 2021 7:02 am; edited 1 time in total
Guest- Guest
Re: TLS interconnection
Hi
The process to build a SIP/TLS interconnection:
1- Get a signed certificate from a certificate authority like GoDaddy, DigiCert. --> create a local cert in GUI
2- Get the carrier signed certificate --> create a trusted cert in GUI
3- Create Profile with these Two certificates
4- Create a Transport Server
5- Create a NAP
Thanks.
The process to build a SIP/TLS interconnection:
1- Get a signed certificate from a certificate authority like GoDaddy, DigiCert. --> create a local cert in GUI
2- Get the carrier signed certificate --> create a trusted cert in GUI
3- Create Profile with these Two certificates
4- Create a Transport Server
5- Create a NAP
Thanks.
Guest- Guest
Re: TLS interconnection
Hello
I have another question:
I have a question if Carrier sends me a self-signed certificate with his root certificate.
How do I declare it in the GUI interface ? 2 trusted certificates?
Thanks.
I have another question:
I have a question if Carrier sends me a self-signed certificate with his root certificate.
How do I declare it in the GUI interface ? 2 trusted certificates?
Thanks.
Guest- Guest
Re: TLS interconnection
Hi
Root certificate will be the trusted certificate. Self-signed certificate will be the Intermediate certificate.
Best regards
Root certificate will be the trusted certificate. Self-signed certificate will be the Intermediate certificate.
Best regards
Guest- Guest
Re: TLS interconnection
Hi,
Thanks for your answer.
If we have the same kind of Certificate for our SBC, how can I declare it on the GUI? (Local ?)
Regards,
Thanks for your answer.
If we have the same kind of Certificate for our SBC, how can I declare it on the GUI? (Local ?)
Regards,
Guest- Guest
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum