Hello, I’m trying to use Asterisk as SBC for Microsoft Teams. With one tenant all is working but I looking to manage more than one MS tenant with a single Asterisk box (using different TLS bind port)
This is the config I’m using:
TRANSPORT
[transport-tls]
type=transport
protocol=tls
bind=0.0.0.0:5061
cert_file=/etc/asterisk/ssl/fullchain.pem
priv_key_file=/etc/asterisk/ssl/privkey.pem
cipher=ECDHE-ECDSA-AES256-SHA,ECDHE-RSA-AES256-SHA,DHE-RSA-AES256-SHA,ECDHE-ECDSA-AES128-SHA,ECDHE-RSA-AES128-SHA,DHE-RSA-AES128-SHA,AES256-SHA,AES128-SHA
method=tlsv1
external_media_address=x.x.x.x
external_signaling_address=x.x.x.x
domain=sbc.domain1.biz
[transportnet-tls]
type=transport
protocol=tls
bind=0.0.0.0:5062
cert_file=/etc/asterisk/ssl/fullchain.pem
priv_key_file=/etc/asterisk/ssl/privkey.pem
cipher=ECDHE-ECDSA-AES256-SHA,ECDHE-RSA-AES256-SHA,DHE-RSA-AES256-SHA,ECDHE-ECDSA-AES128-SHA,ECDHE-RSA-AES128-SHA,DHE-RSA-AES128-SHA,AES256-SHA,AES128-SHA
method=tlsv1
external_media_address=x.x.x.x
external_signaling_address=x.x.x.x
domain=sbc.domain2.biz
ENDPOINT
[msteams_trunk_out]
type=endpoint
transport=transport-tls
disallow=all
allow=ulaw,alaw,gsm
aors = aor_msteams_trunk_out
media_encryption=sdes
from_domain=sbc.domain.biz
allow_transfer=yes
[aor_msteams_trunk_out]
type = aor
qualify_frequency=60
contact = sip:sip.pstnhub.microsoft.com
[aor_msteams_trunk_out_2]
type = aor
qualify_frequency=60
contact = sip:sip.pstnhub.microsoft.com
[msteams_trunk_in]
type = endpoint
transport=transport-tls
context = msteams_in
disallow = all
allow = ulaw, alaw, gsm
media_encryption=sdes
send_pai=no
rewrite_contact=no
allow_transfer=yes
[ident_msteams_trunk_in]
type=identify
endpoint=msteams_trunk_in
match=sip-all.pstnhub.microsoft.com
[ident_msteams_trunk_in_2]
type=identify
endpoint=msteams_trunk_in_2
match=sip-all.pstnhub.microsoft.com
[msteams_trunk_out_2]
type=endpoint
transport=transportnet-tls
disallow=all
allow=ulaw,alaw,gsm
aors = aor_msteams_trunk_out_2
media_encryption=sdes
from_domain=sbc.domain2.it
allow_transfer=yes
[msteams_trunk_in_2]
type = endpoint
transport=transportnet-tls
context = msteams_in
disallow = all
allow = ulaw, alaw, gsm
media_encryption=sdes
send_pai=no
rewrite_contact=no
allow_transfer=yes
seems with this config that the second trunk don’t goes UP (I can’t saw any try from Asterisk).
Anyone have suggestions?