FreeSWITCH and ZRTP status
-
FreeSWITCH supports ZRTP, as stated here: http://www.freeswitch.org/node/186
Also Asterisk is supported, through patches: http://zfoneproject.com/prod_asterisk.html
Doing the encryption this way may make sense in a corporate and other closed environments, but may not be suitable for all situations. Also one has to separate traffic to lower risk of interception, malware on network trying to do MiM attacks and so on.
Anyway: Does this mean the feature is available in FreeSWITCH package for pfSense as well?
If so how is it implemented?
If not implemented, what are the ideas? When used on the users PC (there are also hardware appliances being developed, like http://www.ripcord.com/products_appliance.html) information about status is available at the application layer and continuously being presented to the user. When being used in a centralized manner maybe one could play an overlayed voice from the system stating "call is secure" or "call is not secure" or something. Anyway, if and when (it must be implemented sooner or later) available the user has to be able to get some kind of info on the status.
TIA,
-
I think - someone correct me if I am wrong - that the key is the first line of that linked announcement:
The development team is pleased to announce that preliminary support for ZRTP as been added to the Linux, Unix, and Mac OS X versions of FreeSWITCH. Windows support will be added shortly.
No mention of FreeBSD in there.
-
I might be wrong. Looks like libzrtp is supported on FreeBSD:
http://zfoneproject.com/docs/sdk/man/html/howto.html
I'll leave the correct answers for someone else and stop guessing.
-
pfSense FreeSWITCH package does not have ZRTP yet. It is planned to be added as time permits for UnixDawg.
Regular encryption does work and its pretty easy to setup. Using TLS or SSL for SIP and SRTP.
http://wiki.freeswitch.org/wiki/SRTP
http://wiki.freeswitch.org/wiki/Tls#TLS.2C_SSL_and_SRTP_Encryption