Encrypting SIP with TLS (SIPS)

TLS, as SSL, depends on certificates issued by a Certification Authority that guarantee the identity of the certificate bearer. You can buy a TLS certificate from the same CAs that sell Web HTTPS certificates. You can then use that same certificate with WebSockets, WebRTC and mod_verto too (and for the HTTPS website with the same name as your SIP registrar, for example, https://pbx.freeswitch.org).

Also, you can use free and valid certificates from https://letsencrypt.org/, (see the automatic script in FreeSWITCH Confluence about verto_communicator demo installation on Debian 8).

The tool you use to generate the various certificates involved is (aptly named) gentls_cert:

/usr/local/freeswitch/bin/gentls_cert command ...

Get Mastering FreeSWITCH now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering FreeSWITCH by Anthony Minessale II, Giovanni Maruzzelli

Encrypting SIP with TLS (SIPS)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly