Skip to content

res_pjsip_acl: SIP ACL module

This configuration documentation is for functionality provided by res_pjsip_acl.

Overview

ACL

The ACL module used by 'res_pjsip'. This module is independent of 'endpoints' and operates on all inbound SIP communication using res_pjsip.

There are two main ways of defining your ACL with the options provided. You can use the 'permit' and 'deny' options which act on IP addresses, or the 'contactpermit' and 'contactdeny' options which act on Contact header addresses in incoming REGISTER requests. You can combine the various options to create a mixed ACL.

Additionally, instead of defining an ACL with options, you can reference IP or Contact header ACLs from the file acl.conf by using the 'acl' or 'contactacl' options.

Configuration File: pjsip.conf

[acl]: Access Control List

Since

12.0.0

Configuration Option Reference

Option Name Type Default Value Regular Expression Description Since
acl Custom false List of IP ACL section names in acl.conf 12.2.0
contact_acl Custom false List of Contact ACL section names in acl.conf 12.2.0
contact_deny Custom false List of Contact header addresses to deny 12.2.0
contact_permit Custom false List of Contact header addresses to permit 12.2.0
deny Custom false List of IP addresses to deny access from 12.2.0
permit Custom false List of IP addresses to permit access from 12.2.0
type None false Must be of type 'acl'. 12.0.0

Configuration Option Descriptions

acl

Since: 12.2.0

This matches sections configured in 'acl.conf'. The value is defined as a list of comma-delimited section names.

contact_acl

Since: 12.2.0

This matches sections configured in 'acl.conf'. The value is defined as a list of comma-delimited section names.

contact_deny

Since: 12.2.0

The value is a comma-delimited list of IP addresses. IP addresses may have a subnet mask appended. The subnet mask may be written in either CIDR or dotted-decimal notation. Separate the IP address and subnet mask with a slash ('/')

contact_permit

Since: 12.2.0

The value is a comma-delimited list of IP addresses. IP addresses may have a subnet mask appended. The subnet mask may be written in either CIDR or dotted-decimal notation. Separate the IP address and subnet mask with a slash ('/')

deny

Since: 12.2.0

The value is a comma-delimited list of IP addresses. IP addresses may have a subnet mask appended. The subnet mask may be written in either CIDR or dotted-decimal notation. Separate the IP address and subnet mask with a slash ('/')

permit

Since: 12.2.0

The value is a comma-delimited list of IP addresses. IP addresses may have a subnet mask appended. The subnet mask may be written in either CIDR or dotted-decimal notation. Separate the IP address and subnet mask with a slash ('/')

Generated Version

This documentation was generated from Asterisk branch 20 using version GIT