Page tree
Skip to end of metadata
Go to start of metadata

About

Sometimes you may have multiple customers sending unauthenticated from a common IP. An example of an environment where this can occur is a wholesale trading floor system such as Arbinet.

Customers will arrive from the same IP(s) (so cannot be authenticated by CIDR) and will be unauthenticated (so cannot be authenticated by username & password).

They can be differentiated if they send using different prefixes. An ACL will be required to prevent anyone else sending using the same prefix to avoid fraud.

 Click here to expand Table of Contents

Sofia configuration

You should should then configure a Sofia profile that does not use an ACL and does not require calls to be authenticated.

Configure dialplan routing:

No ACLs (comment this out, prefix x- or remove):

Disable authentication:

Since you can create multiple profiles, it would be possible to create a profile for handling prefix dialling, alongside others which authenticate purely on IP/username. If so you should separate the calls by setting a dialplan context other than default, for instance:

Dialplan

You should create an ACL for each customer and add the IPs each can send from. The ACL is checked from within the dialplan.

The following dialplan can then be used. The customer_known context separates the call logic from the. It would also be possible to have a different context for each customer, to handle each one differently.

Note: a side-effect of this method is that if the call hangs up very quickly, it may hangup before executing the dialplan. This will mean the CDRs for these call will show no account. 
This won't cause any billing issues, but may mean your customer cannot see some of their calls. This is very rare, since it means the hangup must arrive as soon as the INVITE is received.

 

mod_xml_curl

Alternatively if using mod_xml_curl, you can perform the prefix+IP matching within the HTTP application since both destination_number and network_addr values are provided.

A side-effect of this method is that if the call hangs up very quickly, it may hangup before executing the dialplan. This will mean the CDRs for these call will show no account. This won't cause any billing issues, but may mean your customer cannot see some of their calls. This is very rare, since it means the hangup must arrive as soon as the INVITE is received.

 

 

  • No labels