I’m trying to setup a tls sip trunk with one of the providers and whenever there is a connection request from the provider I see the following message in the Asterisk console.
I thought this could be happening because of cipher mismatch but the list I have in pjsip was given by my provider!
If that helps, we are using letsencrypt for our certificates.
WARNING pjproject: SSL SSL_ERROR_SSL (Handshake): Level: 0 err: <337092801> <SSL routines-tls_post_process_client_hello-no shared cipher> len: 0 peer: PROVIDER_IP:49636
Following is my pjsip configuration
[tls_transport] type=transport protocol=tls bind=0.0.0.0:5061 local_net=MY_LOCAL_IP/24 external_media_address=MY_PUBLIC_IP external_signaling_address=MY_PUBLIC_IP cert_file=/etc/letsencrypt/live/MY.DOMAIN.COM/fullchain.pem priv_key_file=/etc/letsencrypt/live/MY.DOMAIN.COM/privkey.pem method=tlsv1_2 cipher=DHE-RSA-AES128-GCM-SHA256,DHE-RSA-AES256-GCM-SHA384,DHE-RSA-AES128-SHA256 [my_provider] type=endpoint allow= !all,ulaw,alaw,gsm,g729 direct_media=no context=incoming-calls transport=tls_transport aors=my_provider [my_provider] type = aor contact = sip:PROVIDER_IP:5061
I’ll appreciate if someone can point me in the right direction or provide some hints.
Thanks in advance.