|
|
|
sip.conf file configuration |
|
|
In the sip.conf file we can configure everything related with the SIP protocol; add new sip users or define sip providers.
For example, and easy example of the sip.conf file:
[general]
context=default
port=5060 ; UDP port for Asterisk
bindaddr=0.0.0.0 ; If we want to specify only an IP (if a computer has three different IPs) 0.0.0.0 means any IP
srvlookup=yes ; Enable DNS SRV server
[peter]
type=friend
secret=welcome
qualify=yes ;latency must be under 2000ms.
nat=no ; Telephone without NAT
host=dynamic ; the devices can be registered with different IPs each time
canreinvite=no ; Asterisk by default redirects
context=internal ; the context of the extensions.conf file
The sip.conf file starts with a [general] section with the default configuration for every user and peer (providers). The default values can be overwritten in the particular configuration of each user or peer
- In general, SIP servers use port 5060 UDP. That is why we use port=5060 . Sometimes, for example if we use SER (Sip Express Router) with Asterisk we should change the port number.
- DNS is a way to manage a logic adress in order to be resolve. That allows, that calls can be led to different places without changing the logic address. Using DNS SRV we have the advantages of DNS whereas if we give the "no" value it is not possible to route calls based in domains. It is a good idea to active the service with srvlookup=yes
Each extension is defined by a user or a peer or a friend and is called with a name between []
- "user" type is used to authenticate incoming calls, "peer" for outcoming calls and "friend" for both. In the example we have a "friend" extension called "peter". It can make incoming and outcoming calls.
- "secret" is the password used to authenticate. In this case it will be "welcome"
- The latency between Asterisk server and the telephone can be monitored with qualify=yes to determine when the device can be reached. Asterisk considers by default that a device is present if its latency is smaller than 2000 ms (2 seconds). This value can be changed with the number of milliseconds instead of "yes".
- If an extension is behind a device that makes NAT (Network Address Translation) like a router or a firewall "nat=yes" force Asterisk to ignore the field contact information and it will use the address which the packages come from.
- If we put "host=dynamic" means that the telephone will be able to connect from any IP address. We can limit this user to access with only an IP or a domain name. If we put "host=static" it would not be necessary that the user will register itself with the password provided in "secret".
- In SIP, invite messages are used to establish calls and to redirect audio or video. Any invite message after initial invite message in the same conversation is considered a reinvite. For example, two users are connected and one of them active Music on Hold (MoH) because he wants to stop the conversation. Therefore, Asterisk make a reinvite to the second user. Later, the first user wants to follow the call and send a reinvite message to Asterisk and is sent to the second user and both are again connected. Using canreinvite=no. force Asterisk to be in the middle not allowing that the final points interchange messages RTP directly.
Finally context=internal shows the context where the instructions for this extension will be executed. This is related to the context of the file extensions.conf that gives the dialplan for that context. Therefore the "internal" context must exist in the file extensions.conf or otherwise we should not create it. Several extensions can have the same context.
Advanced Options:
In the following columns we have the possibilities to configure the "user" and "peer" types . In the case of "friend" both columns are possible because a friend is a user + a peer.
User |
Peer |
Explicación y opciones |
| context |
context |
Context in the dialplan (extensions.conf) for a peer or a user. |
| permit |
permit |
Allow an IP address |
| deny |
deny |
Deny an IP address |
| secret |
secret |
Password for registration |
| md5secret |
md5secret |
Password with md5 |
| dtmfmode |
dtmfmode |
the way dtmf are sent. it could be "RFC2833" or "INFO" |
| canreinvite |
canreinvite |
With"yes" Asterisk is forced to be in the middle not allowing that the final points interchange messages RTP directly. . |
| nat |
nat |
"yes" alert that the devices is behind NAT |
| callgroup |
callgroup |
Defines a callgroup |
| pickupgroup |
pickupgroup |
Defines a callgroup in a pickup() application |
| language |
language |
Defines a country signals and voices. It must be present in the indications.conf file |
| allow |
allow |
allow a codec. Some codesc for the same user are possible. values:
"allow=all" ,"allow=alaw", "allow=ulaw", "allow=g723.1" ; allow="g729" , "allow=ilbc" , "allow=gsm". |
| disallow |
disallow |
disallow a codec. Some values that allow |
| insecure |
insecure |
Defines the way the connections with peers are managed. It has these values very|yes|no|invite|port. "no" is the default value that means that authentication is compulsory. |
| trustpid |
trustpid |
If the Remote-Party-ID is trusted. By default "no" |
| progressinband |
progressinband |
If inband signals must be generated. By default never |
| promiscredir |
promiscredir |
Redirections 302 are supported. By default "no" |
| callerid |
|
Defines the identifier when there is no other information available |
| accountcode |
|
Users can be associated with an accountcode . For billing purposes. |
| amaflags |
|
To CDR and billing purpouses It can be "default", "omit", "billing", or "documentation" |
| incominglimit |
|
Limit of simultaneous calls |
| restrictcid |
|
To hide the caller ID. Deprecated |
| |
mailbox |
Voicemail extension |
| |
username |
If Asterisk acts like SIP client is the user name showed to the calling SIP server. |
| |
fromdomain |
From field of SIP messages |
| |
regexten |
|
| |
fromuser |
User From field of SIP messages |
| |
host |
adress or host of the remote devices. it can be:
- An IP address or a host
- "dynamic" - any IP with password
- "static" - any IP without password |
| |
mask |
|
| |
port |
UDP port |
| |
qualify |
to determine when the device can be reached |
| |
defaultip |
default IP of the host= when "dynamic" is selected |
| |
rtptimeout |
Timeout that ends the call when there is no RTP traffic |
| |
rtpholdtimeout |
Timeout that ends the call when there is no RTP traffic on hold |
Ejemplos:
[grandstream1]
type=friend ; is both peer and user
context=mycontext ; context name
username=grandstream1 ; usually the same as the section
fromuser=grandstream1 ; overwrites caller-ID
callerid=John Smith<1234>
host=192.168.0.23 ; a private IP of a LAN
nat=no ; no NAT
canreinvite=yes ;
dtmfmode=info ; it can be RFC2833 or INFO
mailbox=1234@default ; mailbox 1234 in the context "default"
disallow=all ;
allow=ulaw ; allow alaw codec
; listed with allow= does NOT matter!
;allow=alaw
;allow=g723.1 ; Only g723.1 pass through
;allow=g729 ; Only g729 pass through
[xlite1]
;silence suppresion can be activated
;Xlite sends keep-alive NAT packets ,so qualify=yes is not necessary
type=friend
username=xlite1
callerid="john jones" <5678>
host=dynamic ; xlite softphone could be in any IP address
nat=yes ; X-Lite is behind a NAT device
canreinvite=no ; when a device is behind a NAT device it usually is no
disallow=all
allow=gsm ; GSM needs low bandwithd than ulaw and alaw
allow=ulaw
allow=alaw
[user1_snomsip]
type=friend
secret=blah ; password to register
host=dynamic
dtmfmode=inband ; the possibilities are inband , rfc2833, or info
defaultip=192.168.0.59 ; IP address of the device
mailbox=1234; Voicemail
disallow=all
allow=ulaw ; because we have chosen inband for dtmf we need alaw or ulaw (G.711)
allow=alaw
[user2_pingtel]
type=friend
username=user2_pingtel
secret=blah
host=dynamic
qualify=1000 ; If it is over 1 second without response the connection is broken
callgroup=1,3-4 ; members of groups 1,3 and 4
pickupgroup=1,3-4 ; member of "pickup" groups 1,2 and 4
defaultip=192.168.0.60 ;IP
disallow=all
allow=ulaw
allow=alaw
allow=g729
[user3_cisco]
type=friend
username=user3_cisco
secret=blah
nat=yes ; is behind NAT
host=dynamic
canreinvite=no ;
qualify=200 ; 200 ms to receive a response
defaultip=192.168.0.4
disallow=all
allow=ulaw
allow=alaw
allow=g729
[user4_cisco1]
type=friendusername=user4_cisco
fromuser=peter ;
secret=blah
defaultip=192.168.0.4 ;
amaflags=default ; Possibilities are default, omit, billing or documentation
accountcode=peter ; For billing purposes
disallow=all
allow=ulaw
allow=alaw
allow=g729
allow=g723.1
|
|
|
