SIP registration

dhekial · March 17, 2009, 2:03am

Hi,

Is there anyway to register a SIP client to Asterisk using the first registration pkt sent by the SIP client?

I normally see the following

SIP client ------register----> Asterisk
SIP client <—401/unauthorised- Asterisk
SIP client -----register-----> Asterisk
SIP client <—200 OK------- Asterisk

This is not a problem per say if there is not much delay in the link between SIP client and Asterisk. But if the link has more delay ( >600ms ), the SIP client is not able to register to the SIP server.

thanks,

david55 · March 17, 2009, 11:29am

Don’t use passwords or fix the problem at the client end by getting it to volunteer the password on the first request. (Some, stronger, authentication schemes require a random challenge, so cannot be done without a double exchange.)

dhekial · March 17, 2009, 1:25pm

Thanks.

Can you tell me how to configure a Grandstream HT-502 to send the password in the first registration pkt ?

In a high latency network what I have seen is that the client sends the first registration pkt and then it waits for a while to get the response from Asterisk , before it gets response from Asterisk it sends the registration again assuming that the first reg. packet got lost. So it kind of goes to a race condition and finally gets unauthorised from Asterisk.

Perhaps Asterisk can be configured with some timers to avoid this…

david55 · March 17, 2009, 1:50pm

I don’t have a Grandstream, and this is a Grandstream question, rather than an Asterisk 1.

User agents are not supposed to retry failed registers too aggressively. Again this is a Grandstream issue.

RFC 3261, 10.2.7 (UAC means the Grandstream, here):

[quote] If the transaction layer returns a timeout error because the REGISTER
yielded no response, the UAC SHOULD NOT immediately re-attempt a
registration to the same registrar.

  An immediate re-attempt is likely to also timeout.  Waiting some
  reasonable time interval for the conditions causing the timeout to
  be corrected reduces unnecessary load on the network.  No specific
  interval is mandated.[/quote]

dhekial · March 17, 2009, 2:53pm

I played with T1 timer in HT-502, but did not help.

Is there any way to have only INVITE authenticated but not the REGISTER, something like

insecure=REGISTER ?

david55 · March 17, 2009, 3:02pm

One might as well not register at all in that case, as you would only be using the IP address to verify that outgoing calls were going to the real provider.

dhekial · March 17, 2009, 4:12pm

The clients gets dynamic IPs ( public or private )

david55 · March 17, 2009, 4:15pm

In that case, disabling authentication on registration would allow anyone to hijack your outgoing calls.

Topic		Replies	Views
Issue registering in grandstream Asterisk SIP	7	698	December 15, 2023
Can not register SIP phones. What am I missing? Asterisk Support	3	378	February 1, 2008
Can't Register Asterisk Support	9	424	October 28, 2009
chan_sip.c:5508 sip_reg_timeout error in asterisk Asterisk Support	3	375	July 2, 2013
20 seconds pauses Asterisk Support	5	310	March 23, 2012

SIP registration

Related topics