Enabling TLS and SRTP with pbxHQ
Please note these steps will vary depending on your SIP clients.
General details regarding TLS and SRTP:
TLS can be used without any configuration changes inside the pbxHQ portal. For most SIP clients, it is as simple as changing the SIP transport protocol to TLS instead of UDP/TCP.
Optimal configuration values:
SIP Transport Protocol: TLS
SIP Port: Auto or 5061 or 7001
SIP Outbound Proxy*: sip.pbxhq.com
*SSL certificates on our session border controllers are set to the hostname sip.pbxhq.com. If outbound proxy is not configured to sip.pbxhq.com, you will need to disable certificate verification.
SRTP needs to be enabled on your device within within the pbxHQ portal. It needs to be enabled on a per-device basis, so to configure SRTP for all devices, you will need to go through one by one enabling it for all.
IMPORTANT: Once SRTP is enabled in our portal, it will be enforced. This means, if your SIP client has any issues with SRTP, or is not configured correctly for SRTP, all calls will fail! Please confirm calls are still working properly as soon as SRTP is enabled within the user portal.
Typically SRTP is just a single option within your SIP client configuration.