Kamailio SIP Server Wiki

User Tools

Site Tools

Trace:
tutorials:dns:dnssec

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Next revision Both sides next revision
tutorials:dns:dnssec [2013/04/21 14:47]
miconda [Add DNSSEC Module] 		tutorials:dns:dnssec [2013/04/21 15:06]
miconda [Update Kamailio Config File]
Line 8: Line 8:
   * add DNSSEC support to configuration file   * add DNSSEC support to configuration file
  
-Note: Ubuntu 12.04 was chosen because dnssec tools devel library are provided for this distribution.+**Note:** Ubuntu 12.04 was chosen because dnssec tools devel library are provided for this distribution, making the installation of the required dependencies much easier. There are packages for other Linux distribution (e.g., Fedora), most of the steps provided in this tutorial being valid (the rest have to updated for the specifics of the distribution, e.g., how to install packages, create system users or init.d scripts).
 ===== About DNSSEC ===== ===== About DNSSEC =====
  
Line 29: Line 29:
 ==== DNSSEC Tools Devel Libraries Installation ==== ==== DNSSEC Tools Devel Libraries Installation ====
  
-You need these libraries to compile Kamailio's DNSSEC module. You can download the libraries from:+You need DNSSEC tools devel libraries to compile Kamailio's DNSSEC module. You can download the libraries from:
  
   * http://dnssec-tools.org/download/#gotoBinaries   * http://dnssec-tools.org/download/#gotoBinaries
Line 38: Line 38:
 dns-validator_2.0-1_i386.deb dns-validator_2.0-1_i386.deb
 libval-threads_2.0-1_i386.deb libval-threads_2.0-1_i386.deb
-libsres_2.0-1_i386.deb 
 libval-threads-dev_2.0-1_i386.deb libval-threads-dev_2.0-1_i386.deb
 +libsres_2.0-1_i386.deb
 libsres-dev_2.0-1_i386.deb libsres-dev_2.0-1_i386.deb
 </code> </code>
Line 237: Line 237:
 </code> </code>
  
-Follow the instruction in the comments to enable usage of MySQL. Basically you have to add several lines at the top of config file, like:+Follow the instruction in the comments to enable usage of MySQL. Basically you have to add several lines at the top of config file (but after the first line), like:
  
 <code> <code>
Line 264: Line 264:
 /etc/init.d/kamailio start /etc/init.d/kamailio start
 </code> </code>
 +
 +===== DNS Server DNSSEC Enabled =====
 +
 +This tutorial does not include yet (left for future updates) how to setup a DNSSEC-enabled DNS server, there are many useful resources on the web. Among them:
 +
 +  * http://www.howtoforge.com/configuring-dnssec-on-bind9-9.7.3-on-debian-squeeze-ubuntu-11.10
 +  * http://wiki.wsartori.com/wiki/The_Perfect_BIND_DNS_Server_DNSSEC_enabled
 +===== Testing =====
 +
 +One way to test is to setup two instances of Kamailio, one serving domainA.com and the second domainB.com.
 +
 +Then alice@domainA.com can call bob@domainB.com. Kamailio instance serving domainA.com will do DNS lookup do discover the IP address of domainB.com
  
 ===== Remarks ===== ===== Remarks =====
tutorials/dns/dnssec.txt ยท Last modified: 2013/04/25 12:49 by mariuszbihlei

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki