Telcobridges - Session Border Controllers
Would you like to react to this message? Create an account in a few clicks or log in to continue.

TLS interconnection

Go down

TLS interconnection Empty TLS interconnection

Post by ahsanul.moyeen Thu May 27, 2021 7:00 am

Hi,

I need your help to understand how TLS is working!
I try to establish a TLS trunk between two of our SBC

For both SBC, I followed your wiki page to generate :
- Private Key (.key file)
- Certificate (.crt file)
- Self-signed Certificate (.csr file)
   |->  These 3 files are located in /lib/tb/toolpack/pkg/ssl_certificate/
- Create a local certificate with local informations
- Create a trusted certificate with remote information (crt file)
- Create a TLS Profile with local and trusted certificate in there.
- Create a Transport Server type TLS with the profile newly created
- Create NAP with port 5061 using TLS Transport.  
- Validate and activate configuration.

But my NAPs are still down on both sides...  
I did check the firewall and port 5061 is open for both sides.

Do I need to declare certificates in the CSR file?
Do you think I missed something?

Thanks for your help


Last edited by ahsanul.moyeen on Thu May 27, 2021 7:02 am; edited 1 time in total

ahsanul.moyeen

Number of Messages : 349
Point : 653
Registration Date : 2020-11-24

Back to top Go down

TLS interconnection Empty Re: TLS interconnection

Post by ahsanul.moyeen Thu May 27, 2021 7:02 am

Hi

The process to build a SIP/TLS interconnection:

1- Get a signed certificate from a certificate authority like GoDaddy, DigiCert. --> create a local cert in GUI
2- Get the carrier signed certificate --> create a trusted cert in GUI
3- Create Profile with these Two certificates
4- Create a Transport Server
5- Create a NAP

Thanks.

ahsanul.moyeen

Number of Messages : 349
Point : 653
Registration Date : 2020-11-24

Back to top Go down

TLS interconnection Empty Re: TLS interconnection

Post by ahsanul.moyeen Thu May 27, 2021 7:05 am

Hello

I have another question:

I have a question if Carrier sends me a self-signed certificate with his root certificate.

How do I declare it in the GUI interface ? 2 trusted certificates?


Thanks.

ahsanul.moyeen

Number of Messages : 349
Point : 653
Registration Date : 2020-11-24

Back to top Go down

TLS interconnection Empty Re: TLS interconnection

Post by ahsanul.moyeen Thu May 27, 2021 7:05 am

Hi

Root certificate will be the trusted certificate. Self-signed certificate will be the Intermediate certificate.

Best regards

ahsanul.moyeen

Number of Messages : 349
Point : 653
Registration Date : 2020-11-24

Back to top Go down

TLS interconnection Empty Re: TLS interconnection

Post by ahsanul.moyeen Thu May 27, 2021 7:05 am

Hi,

Thanks for your answer.
If we have the same kind of Certificate for our SBC, how can I declare it on the GUI? (Local ?)

Regards,

ahsanul.moyeen

Number of Messages : 349
Point : 653
Registration Date : 2020-11-24

Back to top Go down

TLS interconnection Empty Re: TLS interconnection

Post by ahsanul.moyeen Thu May 27, 2021 7:06 am

You need to decelerate as a local certificate.

Thanks.

ahsanul.moyeen

Number of Messages : 349
Point : 653
Registration Date : 2020-11-24

Back to top Go down

Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum