Asterisk16 webrtc Problem setting up ssl connection: error

Hi all,

i’m trying to instal webrtc over my asterisk16

Blockquote
[transport-wss]
type=transport
protocol=wss
bind=0.0.0.0
[199]
type=endpoint
aors=199
auth=199
use_avpf=yes
media_encryption=dtls
dtls_ca_file=/etc/asterisk/keys/ca.crt
dtls_cert_file=/etc/asterisk/keys/asterisk.pem
dtls_verify=fingerprint
dtls_setup=actpass
ice_support=yes
media_use_received_transport=yes
rtcp_mux=yes
context=helloworld2
disallow=all
allow=ulaw
allow=opus
[199]
type=auth
auth_type=userpass
username=199
password=199
[199]
type=aor
max_contacts=1
remove_existing=yes

http.conf
[general]
enabled=yes
bindaddr=0.0.0.0
bindport=8088
tlsenable=yes
tlsbindaddr=0.0.0.0:8089
tlscertfile=/etc/asterisk/keys/asterisk.pem
tlsprivatekey=/etc/asterisk/keys/asterisk.key

extenction.conf

[helloworld2]
exten => _X.,1,NoOp(${EXTEN})
same => n,Playback(hello-world)
same => n,Dial(PJSIP/${EXTEN},20)
same => n,Read(Digits,,)
same => n,Playback(you-entered)
same => n,SayNumber(${Digits})

the server is ok and listening over 8080 http e 8089https
i’m trying to verify is all is ok, but when i try into my browser
https://ippubblic:8089/ws
i receive into the asterisk -rvvvvvv

[Nov 25 16:05:26] ERROR[21562]: iostream.c:647 ast_iostream_start_tls: Problem setting up ssl connection: error:00000001:lib(0):func(0):reason(1), Internal SSL error
[Nov 25 16:05:26] ERROR[21562]: tcptls.c:179 handle_tcptls_connection: Unable to set up ssl connection with peer ‘192.168.1.249:33904’
[Nov 25 16:05:26] ERROR[21562]: iostream.c:552 ast_iostream_close: SSL_shutdown() failed: error:00000001:lib(0):func(0):reason(1), Internal SSL error

whe i try with sipML5 - The world's first open source HTML5 SIP client
privete identity:199
public identity sip:199@ippubblic.
pass: 199
Realm: asterisk

the error is the same.

any suggestions
Peter

You might consider:

  1. Trying the PJSIP Wizards out, much less config to deal with.
  2. Trying the “webrtc=yes” and “dtls_auto_generate_cert” options for the endpoint.
  3. Trying valid SSL certs and not self-signed.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.