From 56389d7adcbc1a71551ba4b93900ba993a2291e6 Mon Sep 17 00:00:00 2001 From: Daniel-Constantin Mierla Date: Tue, 17 Feb 2015 14:50:43 +0100 Subject: [PATCH] tls: documentation for server_name and xavp_cfg --- modules/tls/doc/params.xml | 52 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 52 insertions(+) diff --git a/modules/tls/doc/params.xml b/modules/tls/doc/params.xml index ecd5802d848..60d62fcacf2 100644 --- a/modules/tls/doc/params.xml +++ b/modules/tls/doc/params.xml @@ -350,6 +350,28 @@ modparam("tls", "cipher_list", "HIGH") +
+ <varname>server_name</varname> (string) + + Sets the Server Name Indication (SNI) value. + + + This is a TLS extension and is not working for old and obsoleted + SSL versions. + + + The default value is empty (not set). + + + Set <varname>server_name</varname> parameter + +... +modparam("tls", "server_name", "kamailio.org") +... + + +
+
<varname>send_timeout</varname> (int) @@ -993,6 +1015,7 @@ modparam("tls", "renegotiation", 1) ca_list crl cipher_list + server_name All the parameters that take filenames as values will be resolved @@ -1031,6 +1054,7 @@ private_key = local_key.pem certificate = local_cert.pem verify_depth = 3 ca_list = local_ca.pem +server_name = kamailio.org @@ -1058,4 +1082,32 @@ modparam("tls", "config", "/usr/local/etc/kamailio/tls.cfg")
+
+ <varname>xavp_cfg</varname> (string) + + Sets the name of XAVP that stored attributes for TLS connections. + + + The following (inner) attributes can be set: + + + server_name - SNI to be used for outbound connections + + + The default value is empty (not set). + + + Set <varname>xavp_cfg</varname> parameter + +... + modparam("tls", "xavp_cfg", "tls") + ... + $xavp(tls=>server_name) = "kamailio.org"; + $du = "sip:kamailio.org:5061;transport=tls"; + route(RELAY); +... + + +
+