GenerateNBCDR=01Generate CDRs for calls from neighbor zones on the status port. The IP and endpoint ID of the calling party is printed as empty. This is usually used for debugging purposes. The accounting modules will always get CDR data for all calls.
GenerateUCCDR=00Generate CDRs for calls that are unconnected. This is usually used for debugging purposes. Note that a call is considered unconnected only if the gatekeeper uses routed mode and a Q.931 "Connect" message is not received by the gatekeeper. In direct mode, a call is always considered connected.
DefaultCallDurationLimit=36000Default maximum call duration limit (seconds).
Set it to 0 to disable this feature and not limit
call duration.
AcctUpdateInterval=600A time interval (seconds) for accounting updates to be logged for each call in progress. The exact details of the accounting updates depend on accounting logger modules selected (see section [Gatekeeper::Acct]). In general, the accounting update is to provide back-end services with incrementing call duration for connected calls. The default value "0" disables accounting updates. Please note that setting this to a short interval may decrease gatekeeper performance.
TimestampFormat=CiscoRFC822Format of timestamp strings printed inside CDRs. You can use the same list of formats as specified in the [Gatekeeper::Main] section.
IRRFrequency=60120Set the irrFrequency in ACF messages. 0 turns it off.
IRRCheck=TRUEFALSECheck if both endpoints in a call send the requested IRRs. A call will be terminated if one of the endpoints do not send an IRR after 2 * irrFrequency.
SingleFailoverCDR=FALSETRUEWhen failover is active, more than one gateway may be tried to establish a call. This switch defines if one or multiple CDRs are generated for such a call.
DisabledCodecs=g711Alaw64k;g711Ulaw64k;h263VideoCapability;N/AFilter out certain codecs. Please note the trailing semicolon. Calls must be H.245 routed or proxied for codec filtering to work. This setting can be overridden on a per-call basis by using the Radius attribute 'disable-codec'.
When converting between H.225 reasons and Q.931 cause codes, GnuGk uses a conversion table. Using this section you can change this mapping.
[H225toQ931]
;0=34 # noBandwidth
;1=47 # gatekeeperResources
2=34 # unreachableDestination => NoCircuitChannelAvailable (default 3)
;3=16 # destinationRejection
;4=88 # invalidRevision
;5=111 # noPermission
;6=38 # unreachableGatekeeper
;7=42 # gatewayResources
;8=28 # badFormatAddress
;9=41 # adaptiveBusy
;10=17 # inConf
;11=31 # undefinedReason
;12=16 # facilityCallDeflection
;13=31 # securityDenied
14=34 # calledPartyNotRegistered => NoCircuitChannelAvailable (default 20)
;15=31 # callerNotRegistered
;16=47 # newConnectionNeeded
;17=127 # nonStandardReason
;18=31 # replaceWithConferenceInvite
;19=31 # genericDataReason
;20=31 # neededFeatureNotSupported
;21=127 # tunnelledSignallingRejected
Use H.460.9 to collect Quality of Service information from endpoints. Endpoints must support H.460.9 for this service to function.
Enable=10Defines whether to enable or disable the feature. If enabled, this function will respond to supportedFeature requests from clients so clients know to send QoS statistics to the gatekeeper.
CallEndOnly=01Defines whether to collect the information via IRR messages or only collect QoS information at the end of a call.
DetailFile=qos.txtN/ADefine the output file for QoS logs. If a file is not defined the QoS information is output as an item in the Trace File at trace level 4.
This section allows you to store QoS information in a database. You can use the same database parameters as defined in [SQLPasswordAuth].
Query=INSERT ...N/ADefines the SQL query used to store the QoS information.
The following parameters are defined:
%g - gatekeeper ID%{ConfId} - conference ID%{session} - session%{caller-ip} - caller IP%{caller-port} - caller port%{caller-nat} - is caller NATted (0 or 1)%{callee-ip} - caller IP%{callee-port} - caller port%{avgdelay} - average delay%{packetloss} - packet loss%{packetloss-percent} - packet loss percentage%{avgjitter} - average jitter%{bandwidth} - bandwidth (in units of 100 bits per second)%t - timestamp
Sample query string:
INSERT INTO qos SET caller_ip="%{caller-ip}", bandwidth="%{bandwidth}, timestamp=%t
The gatekeeper can function as an endpoint by registering with another gatekeeper, allowing you to build gatekeeper hierarchies. This section defines the endpoint features for the gatekeeper.
Gatekeeper=10.0.1.1noDefine a parent gatekeeper for
GnuGk to register with.
When a call in the routing process reaches the 'parent' routing policy,
it will route all calls to this gatekeeper.
If you set this to auto, GnuGk will send an IPv4 broadcast GRQ.
Make sure you don't register with yourself, the results can be very confusing.
Type=GatewayGatewayDefine the terminal type GnuGk will use when it registers.
Valid options are Gateway or Terminal.
Vendor=Cisco | GnuGk | GenericGnuGkChoose parent gatekeeper type to enable vendor specific extensions.
H323ID=ProxyGK<Name>Specify the H.323 ID aliases for the endpoint. Multiple aliases can be separated with a comma.
E164=18888600000,18888700000N/ADefine the E.164 (dialedDigits) aliases for the endpoint. Multiple aliases can be separated with a comma.
Password=123456N/ASpecify a password to be sent to the parent gatekeeper.
All RAS requests will contain the password in the cryptoTokens field
(MD5 & HMAC-SHA1-96) and the tokens field (CAT).
To send RAS requests without the cryptoTokens and tokens fields,
configure an empty password.
If EncryptAllPasswords is enabled, or a KeyFilled variable is defined
in this section, the password is in encrypted form and should be created using
the addpasswd utility.
The password will be used in LRQs sent to neighbor gatekeepers.
Prefix=188886,188887N/ARegister the specified prefixes with the parent gatekeeper.
Only takes effect when the Type is Gateway.
TimeToLive=90060Suggest a time-to-live value (in seconds) for the registration. Note that the real time-to-live timer is assigned by the parent gatekeeper in the RCF is sends to us in response to our RRQ.
RRQRetryInterval=103Define a retry interval in seconds for resending an RRQ if no response is received from the parent gatekeeper. This interval is doubled with each failure, up to a maximum RRQRetryInterval * 128 timeout.
UnregisterOnReload=10Defines whether the child gatekeeper unregisters and re-registers with its parent after receiving a Reload command from the status port.
NATRetryInterval=6060How long to wait before trying to reconnect TCP NAT signaling socket (seconds). This can happen when either the connection cannot be established or it has been broken.
NATKeepaliveInterval=8640086400Define how often the TCP NAT signaling connection with a parent gatekeeper is refreshed. As NAT boxes usually keep TCP mappings for a certain duration, it's strongly suggested to set this to a value slightly shorter than the NAT box mapping timeout. Refreshing is done by sending a special Q.931 IncomingCallProceeding message. If your NAT performs TCP port translation, you may need to set it to a value as short as 60 seconds.
Discovery=01Configures GnuGk to attempt to discover the parent gatekeeper by first sending a GRQ.
UseAlternateGK=01Enable alternate gatekeepers feature. If GRJ/GCF/RCF messages received
from a parent gatekeeper contain a list of alternate gatekeepers, this
information is stored and can be used to re-register with another gatekeeper
in case of failure. If you don't want to use this feature, set this
variable to 0.
GatekeeperIdentifier=ParentGKNot setDefine this parameter if you only want to accept parent gatekeepers that match this gatekeeper identifier. Useful with GRQ discovery and can prevent an accidental gatekeeper match. Do not set this variable if you do not care about gatekeeper identifiers or you use alternate gatekeepers that can have different gatekeeper identifiers.
EndpointIdentifier=ChildGKNot setSet this if you want to use a specific endpoint identifier for this child gatekeeper. If this option is not set (default), the identifier is assigned by a parent gatekeeper in a GCF/RCF message.
ForwardDestIp=01Forward the destCallSignalAddress in ARQs to the parent gatekeeper.
This section allows the configuration of a so-called virtual queue to allow inbound call distribution by an external application via the status port. A virtual queue has a H.323 alias that can be called like an endpoint or it can answer to a set of aliases.
Once a call arrives on the virtual queue, the gatekeeper signals a RouteRequest on the status port and waits for an external application to respond with either a RouteReject (which will cause the call to be rejected) or with RouteToAlias/RouteToGateway which leads to the destination being rewritten so the call will be routed to the alias (eg. call center agent) specified by the external application.
If no answer is received after a timeout period, the call is terminated.
You can specify virtual queues in three ways:
exact alias name - a list of aliases is given. If a request destination
alias matches one these names, the virtual queue is activated.prefix - a list of prefixes is given. If a request destination alias
starts with one these prefixes, the virtual queue is activated.regular expression - a regular expression is given. If a request destination
alias matches the expression, the virtual queue is activated.To apply the virtual queue to all calls, specify a regular expression that matches everything, see the example below.
See the monitoring section for details on the messages and responses.
VirtualQueueAliasesnoneThis defines a list of H.323 aliases for the virtual queues (used with the vqueue RoutingPolicy).
VirtualQueueAliases=sales,support
VirtualQueuePrefixesnoneThis defines a list of prefixes for the virtual queues (used with the vqueue RoutingPolicy).
VirtualQueuePrefixes=001215,1215
VirtualQueueRegexnoneThis defines a regular expression for the virtual queues (used with the vqueue RoutingPolicy).
VirtualQueueRegex=^(001|1)215[0-9]*$
VirtualQueueRegex=^.*$
RequestTimeout10This section contains the settings for the status port command MakeCall.
EndpointAlias=DialOutInternalMakeCallEPThis defines the endpoint alias for the pseudo endpoint used to dial.
TransferMethod=H.450.2FacilityForwardSet the method to transfer the call from the pseudo endpoint to the actual destination. Possible values are: FacilityForward, FacilityRouteCallToMC and H.450.2.
UseH450=10Use a H.450.2 transfer instead of a Facility message to transfer the call from the pseudo endpoint to the actual destination. Deprecated: Use TransferMethod= instead.
Gatekeeper=192.168.1.2127.0.0.1Gatekeeper IP for the pseudo endpoint to register with.
Interface=192.168.1.1:1730*:1722Interface and port to use for the pseudo endpoint.
DisableFastStart=10Disable FastStart for the pseudo endpoint.
DisableH245Tunneling=10Disable H.245 tunneling for the pseudo endpoint.
Load gatekeeper settings from a SQL database (in addition to settings
read from the config file). A generic ConfigQuery can be used
to read almost all setting from the database and/or one of [RasSrv::RewriteE164],
[RasSrv::PermanentEndpoints], [RasSrv::Neighbors],
[RasSrv::GWPrefixes] queries can be used to load particular settings.
Entries read from the SQL database take precedence over settings found
in the config file.
Use the common database configuration options to define your database connection for this module.
ConfigQuery=SELECT ...N/ADefine a SQL query used to read gatekeeper settings from the database.
The query is parameterized - that means parameter replacement occurs before
the query is executed. Parameter placeholders are denoted by %1, %2, ...
strings. Specify %% to embed a percent character before a digit in a string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For ConfigQuery only one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - config section namecolumn at index 1 - config key (option name)column at index 2 - config value (option value)Sample query strings:
ConfigQuery=SELECT secname, seckey, secval FROM sqlconfig WHERE gk = '%1'
ConfigQuery=SELECT 'RasSrv::RRQAuth', alias, rule FROM rrqauth WHERE gk = '%1'
RewriteE164Query=SELECT ...N/ADefine a SQL query used to retrieve rewrite rules from the database
for the [RasSrv::RewriteE164] section. The query is parameterized
- that means parameter replacement occurs before each query is executed.
Parameter placeholders are denoted by %1, %2, ... strings.
Specify %% to embed a percent character before a digit into string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For RewriteE164Query only one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - rewrite rule keycolumn at index 1 - rewrite rule valueSample query strings:
RewriteE164Query=SELECT rkey, rvalue FROM rewriterule WHERE gk = '%1'
RewriteAliasQuery=SELECT ...N/ADefine a SQL query used to retrieve rewrite rules from the database
for the [RasSrv::RewriteAlias] section. The query is parameterized
- that means parameter replacement occurs before each query is executed.
Parameter placeholders are denoted by %1, %2, ... strings.
Specify %% to embed a percent character before a digit into string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For RewriteAliasQuery only one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - rewrite rule keycolumn at index 1 - rewrite rule valueSample query strings:
RewriteAliasQuery=SELECT rkey, rvalue FROM assignedalias WHERE gk = '%1'
AssignedAliasQuery=SELECT ...N/ADefine a SQL query used to retrieve rewrite rules from the database
for the [RasSrv::AssignedAlias] section. The query is parameterized
- that means parameter replacement occurs before each query is executed.
Parameter placeholders are denoted by %1, %2, ... strings.
Specify %% to embed a percent character before a digit into string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For AssignedAliasQuery only one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - rewrite rule keycolumn at index 1 - rewrite rule valueSample query strings:
AssignedAliasQuery=SELECT rkey, rvalue FROM assignedalias WHERE gk = '%1'
NeighborsQuery=SELECT ...N/ADefine a SQL query used to retrieve neighbor entries from the database
for the [RasSrv::Neighbors] section. The query is parameterized
- that means parameter replacement occurs before each query
is executed. Parameter placeholders are denoted by %1, %2, ...
strings. Specify %% to embed a percent character before a digit into string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For NeighborsQuery one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - neighbor name (identifier)column at index 1 - neighbor IP addresscolumn at index 2 - neighbor port numbercolumn at index 3 - optional prefixes (comma separated)column at index 4 - optional passwordcolumn at index 5 - optional dynamic IP flagSample query strings:
NeighborsQuery=SELECT nid, nip, nport, npfx, NULL, 0 FROM neighbor WHERE gk = '%1'
PermanentEndpointsQuery=SELECT ...N/ADefine a SQL query used to retrieve permanent endpoints from the database
for the [RasSrv::PermanentEndpoints] section. The query is parameterized
- that means parameter replacement occurs before each query
is executed. Parameter placeholders are denoted by %1, %2, ...
strings. Specify %% to embed a percent character before a digit into string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For PermanentEndpointsQuery only one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - permanent endpoint IP addresscolumn at index 1 - permanent endpoint port numbercolumn at index 2 - permanent endpoint aliascolumn at index 3 - optional permanent endpoint prefixes (comma separated)Sample query strings:
PermanentEndpointsQuery=SELECT peip, 1720, pealias, NULL FROM permanentep WHERE gk = '%1'
GWPrefixesQuery=SELECT ...N/ADefine a SQL query used to retrieve gateway prefixes from the database
for the [RasSrv::GWPrefixes] section. The query is parameterized
- that means parameter replacement is made before each query
is executed. Parameter placeholders are denoted by %1, %2, ...
strings. Specify %% to embed a percent character before a digit into string
(like %%1), specify %{1} to allow expansion inside complex expressions
like %{1}123. For GWPrefixesQuery only one parameter is defined:
%1 - the gatekeeper identifiercolumn at index 0 - gateway aliascolumn at index 1 - gateway prefixes (comma separated)Sample query strings:
GWPrefixesQuery=SELECT gwalias, gwpfx FROM gwprefix WHERE gk = '%1'
GnuGk can execute a system command whenever it opens a new port for listening. For example, this can be used to automatically update the firewall configuration.
The following placeholder are available:
%p - protocol ("udp" or "tcp")%n - port number%i - IPBy configuring a command to run for some types of ports, but not for others, you can easily choose which ports to handle and which to ignore.
Q931PortOpen=/usr/local/bin/ports.sh %p %n %inoneQ931PortClose=/usr/local/bin/ports.sh %p %n %inoneH245PortOpen=/usr/local/bin/ports.sh %p %n %inoneH245PortClose=/usr/local/bin/ports.sh %p %n %inoneRTPPortOpen=/usr/local/bin/ports.sh %p %n %inoneRTPPortClose=/usr/local/bin/ports.sh %p %n %inoneT120PortOpen=/usr/local/bin/ports.sh %p %n %inoneT120PortClose=/usr/local/bin/ports.sh %p %n %inoneRASPortOpen=/usr/local/bin/ports.sh %p %n %inoneRASPortClose=/usr/local/bin/ports.sh %p %n %inoneStatusPortOpen=/usr/local/bin/ports.sh %p %n %inoneStatusPortClose=/usr/local/bin/ports.sh %p %n %inoneRadiusPortOpen=/usr/local/bin/ports.sh %p %n %inoneRadiusPortClose=/usr/local/bin/ports.sh %p %n %inone
Example:
[PortNotifications]
Q931PortOpen=/usr/local/bin/ports.sh %p %n %i
Q931PortClose=/usr/local/bin/ports.sh %p %n %i
H245PortOpen=/usr/local/bin/ports.sh %p %n %i
H245PortClose=/usr/local/bin/ports.sh %p %n %i
RTPPortOpen=/usr/local/bin/ports.sh %p %n %i
RTPPortClose=/usr/local/bin/ports.sh %p %n %i
RASPortOpen=/usr/local/bin/ports.sh %p %n %i
RASPortClose=/usr/local/bin/ports.sh %p %n %i
T120PortOpen=/usr/local/bin/ports.sh %p %n %i
T120PortClose=/usr/local/bin/ports.sh %p %n %i