Secure VoIP

From Taridium

Revision as of 01:45, 24 August 2010 by Webmaster (Talk | contribs)
Jump to: navigation, search

THIS PAGE IS UNDER CONSTRUCTION!

Contents

Setting up ipbx

Configuring SIP/TLS

Creating a Key File and CA

$ openssl genrsa -des3 -out ca.key 4096
$ openssl req -new -x509 -days 365 -key ca.key -out ca.crt

Country Name (2 letter code) [GB]:US State or Province Name (full name) [Berkshire]:New York Locality Name (eg, city) [Newbury]:New York Organization Name (eg, company) [My Company Ltd]:Taridium Organizational Unit Name (eg, section) []:engineering Common Name (eg, your name or your server's hostname) []:ipbx.taridium.net Email Address []:info@taridium.com

$ openssl genrsa -out key.pem 1024
$ openssl req -new -key key.pem -out req-ipbx_taridium.csr

Creating a Self-Signed Certificate

To create the self-signed certificate, do the following:

$ openssl x509 -req -days 365 -in request.pem -signkey key.pem -out certificate.pem

$ openssl x509 -req -days 365 -in req-ipbx_taridium.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out cert-ipbx.cert

Installing the Certificate

$ cat key.pem > asterisk.pem
$ cat cert-ipbx.cert >> asterisk.pem
$ mv asterisk.pem /etc/asterisk/
$ chown asterisk:asterisk /etc/asterisk/asterisk.pem

Setting up your Device

ipbx Configuration

Device Configuration

Personal tools
Namespaces
Variants
Actions
Toolbox