This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
tutorials:dns:dnssec [2013/04/21 14:41] miconda [Update Kamailio Configuration File] |
tutorials:dns:dnssec [2013/04/21 19:35] miconda [Init.d Script] |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Kamailio with DNSEC ====== | ====== Kamailio with DNSEC ====== | ||
- | The **dnssec** module was added during the development of v4.1.0 (expected to be released later in 2013). Therefore this tutorial presents how to add DNSSEC module in the default configuration file of Kamailio, following GIT installation guidelines. | + | The **dnssec** module |
In short, this tutorial focuses on: | In short, this tutorial focuses on: | ||
Line 8: | Line 8: | ||
* add DNSSEC support to configuration file | * add DNSSEC support to configuration file | ||
- | Note: Ubuntu 12.04 was chosen because dnssec tools devel library are provided for this distribution. | + | **Note:** the DNSSEC module is several days old at the time of writing initial version of this tutorial. For any assistance, email to **< |
+ | |||
+ | * http:// | ||
+ | |||
+ | **Note: | ||
===== About DNSSEC ===== | ===== About DNSSEC ===== | ||
Line 29: | Line 33: | ||
==== DNSSEC Tools Devel Libraries Installation ==== | ==== DNSSEC Tools Devel Libraries Installation ==== | ||
- | You need these libraries to compile Kamailio' | + | You need DNSSEC tools devel libraries to compile Kamailio' |
* http:// | * http:// | ||
Line 38: | Line 42: | ||
dns-validator_2.0-1_i386.deb | dns-validator_2.0-1_i386.deb | ||
libval-threads_2.0-1_i386.deb | libval-threads_2.0-1_i386.deb | ||
- | libsres_2.0-1_i386.deb | ||
libval-threads-dev_2.0-1_i386.deb | libval-threads-dev_2.0-1_i386.deb | ||
+ | libsres_2.0-1_i386.deb | ||
libsres-dev_2.0-1_i386.deb | libsres-dev_2.0-1_i386.deb | ||
</ | </ | ||
Line 196: | Line 200: | ||
</ | </ | ||
- | Edit the file **/ | + | Edit the file **/ |
< | < | ||
DAEMON=/ | DAEMON=/ | ||
+ | CFGFILE=/ | ||
</ | </ | ||
Line 237: | Line 243: | ||
</ | </ | ||
- | Follow the instruction in the comments to enable usage of MySQL. Basically you have to add several lines at the top of config file, like: | + | Follow the instruction in the comments to enable usage of MySQL. Basically you have to add several lines at the top of config file (but after the first line), like: |
< | < | ||
Line 264: | Line 270: | ||
/ | / | ||
</ | </ | ||
+ | |||
+ | ===== DNS Server DNSSEC Enabled ===== | ||
+ | |||
+ | This tutorial does not include yet (left for future updates) how to setup a DNSSEC-enabled DNS server, there are many useful resources on the web. Among them: | ||
+ | |||
+ | * http:// | ||
+ | * http:// | ||
+ | ===== Testing ===== | ||
+ | |||
+ | One way to test is to setup two instances of Kamailio, one serving domainA.com and the second domainB.com. | ||
+ | |||
+ | Then alice@domainA.com can call bob@domainB.com. Kamailio instance serving domainA.com will do DNS lookup do discover the IP address of domainB.com | ||
+ | |||
+ | ===== Remarks ===== | ||
+ | |||
+ | * setup of a DNS server with DNSSEC support is left for future updates of this tutorial | ||
+ | * the DNSSEC module overwrites the API in the core for doing DNS queries, therefore is nothing else required to do apart of loading the module | ||
+ | * Kamailio will do a DNS query each time it has to forward a SIP request based on hostname |