Placeholder for our stuff related to Telecom, IT, Internet of things (IOT), ESP8266, Raspberry Pi

Home IOT Telecom IT stuff About Us Contact Us Site Map

SIPp: Generate TLS call

 Dec 28, 2021

Install sipp

# yum install -y cmake gcc gcc-c++ ncurses ncurses-devel openssl libnet libpcap libpcap-devel gsl gsl-devel
# yum install lksctp*
# yum install openssl-devel*
# wget https://github.com/SIPp/sipp/releases/download/v3.6.1/sipp-3.6.1.tar.gz
# tar -xzvf sipp-3.6.1.tar.gz
# cd sipp-3.6.1
# make


Generate openssl certificate in sipp directory

 # openssl req -newkey rsa:2048 -x509 -keyout cakey.pem -out cacert.pem -days 3650 -nodes

Note: While using "-nodes" attribute your private key will not be encrypted. System will not prompt for password.

Verify cacert.pem and cakey.pem are in sipp directory.

Add cacert.pem in remote node

Make a test call


 # ./sipp -i -p 5070 -t l1 -sn uac -s 9876543210 -m 1


 # ./sipp -i -p 5070 -t l1 -sn uas


Alternate Method

Build certs for TLS based sipp UAS server

make master dir for all certs
# mkdir certs
# chmod 0700 certs
# cd certs

Make CA folder, create cert and check
# mkdir demoCA
# cd demoCA
# mkdir newcerts
# echo '01' > serial
# touch index.txt
# openssl req -new -x509 -extensions v3_ca -keyout key.pem -out cert.pem -days 3650

Validation of the contents of certs ( optional )
# openssl x509 -in cert.pem -noout -text
# openssl x509 -in cert.pem -noout -dates
# openssl x509 -in cert.pem -noout -purpose

Make domain folder and create the certs for the sip domain name from parent and check. Here is my sipp server ip
# cd ..
# mkdir
# openssl req -new -nodes -keyout key.pem -out req.pem

Create demoCA.conf in demoCA folder

# vi demoCA.conf

Give following commands to sign cert by demoCA

# ls demoCA
# openssl ca -config /root/certs/demoCA/demoCA.conf -days 730 -out -keyfile demoCA/key.pem -cert demoCA/cert.pem -infiles
Using configuration from /root/certs/demoCA/demoCA.conf
Enter pass phrase for demoCA/key.pem:
Check that the request matches the signature
Signature ok
The Subject's Distinguished Name is as follows
countryName :PRINTABLE:'IN'
stateOrProvinceName :ASN.1 12:'MH'
localityName :ASN.1 12:'PUNE'
organizationName :ASN.1 12:'dialogic'
organizationalUnitName:ASN.1 12:'pse'
commonName :ASN.1 12:'sipp.superserver.com'
emailAddress :IA5STRING:'[email protected]'
Certificate is to be certified until Jan 21 17:12:54 2024 GMT (730 days)
Sign the certificate? [y/n]:y

1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated

Verify the generated certificate for for SIP domain
# openssl x509 -in -noout -text

Run sipp UAS
# sipp -sn uas -p 5061 -t l1 -tls_key /root/certs/ -tls_cert /root/certs/ -i

Run sipp UAC
# sipp -s 1234567890 -sn uac -t l1 -tls_key /root/certs/ -tls_cert /root/certs/ -i




Suresh Hariramani

I am an IOT enthusiast with more than 20 years of experience in the IT sector. Specializing in telecom service's; follow me for some very innovative and best in class IOT products as I unfold my knowledge and passion for the subject.


Vatsal Hariramani

Just me, myself and I, exploring the universe of uknownment. I have a heart of love and interests in technology, IOT and travel . And I want to share my world with you .