Skip to main content

How do you enable DTLS?

Posted by antme on Thu, 06/08/2017

I have set up DTLS on the peer "other options" but are the phones supposed to register to TLS port 5060? 5061? or 443? I have tried all of these and I can't seem to register the phones. Only port 5060 UDP works.

Here are our current settings:

dtlscertfile=/certs/server.crt
dtlsenable=yes
dtlsprivatekey=/certs/server.key
dtlsverify=no
dtlssetup=actpass
transport=udp,ws

Am I missing something?

Thanks,


Submitted by volodya on Fri, 06/09/2017 Permalink

Hello,

Did you configured Asterisk to listen on ports you mentioned? TCP/443 is used by Nginx in stock configuration by default. If you are assigning different listening ports you have to adjust firewall settings too.

Also shouldn't transport be set to tls?