Hello;
I am attempting to verify IAX2 encryption with wireshark using this page as a guide:
panoramisk.com/85/iax-trunk- … hering/en/
I am capturing packets on my local machine, and making a call from a second computer on my lan, the asterisk computer is located remotely.
In iax.conf, I comment out all lines dealing with encryption, restart asterisk and make a call. The captured packets all show:
40 9.705337 192.168.1.11 xxx.xxx.xxx.xxx IAX2 Voice, source call# 25, timestamp 6340ms, GSM compression
or
48 9.845138 192.168.1.11 xxx.xxx.xxx.xxx IAX2 Mini packet, source call# 25, timestamp 6480ms, GSM compression
according to the web page, I should see ‘unknown’ instead of the GSM voice compression.
for an encrypted test, I have used (in the general section of iax.conf):
encryption=aes128
or
encryption=yes
and/or
forceencryption = yes
In each extension, I have set:
auth=md5
and
encryption=aes128
or
encryption=yes
each iax.conf change is followed by unregistering the client software (zoiper), restarting asterisk, ‘iax2 reload’, re-registering the zoiper clients, and making a call.
For the tests, ‘iax2 show peers’ shows:
911/911 xxx.xxx.xxx.xxx (D) 255.255.255.255 64938 (E) OK (188 ms)
912/912 xxx.xxx.xxx.xxx (D) 255.255.255.255 49492 (E) OK (198 ms)
So I am assuming that the md5 auth is working ok.
Each test comes up with the same result in wireshark. Am I looking for the wrong thing in wireshark?
EDIT - I should also include that I am using version:
Asterisk 1.6.0.9 built by (me) on a i686 running Linux on 2009-04-22 17:43:59 UTC
Ubuntu Linux 8.04.2
Linux 2.6.24-23-server on i686