help | 19 SIP Gateway Links | Configuring a SIP Gateway Trunk | The "Encryption" tab
The "Encryption" tab
You can specify here how and whether voice data going via this trunk should be encrypted.
Encryption mode
This is where you specify the mode of encryption for this trunk. The following encryption modes are available:
*No encryption
If "No encryption" is selected, the voice data going via this trunk is not encrypted. If the encryption mode was set to "No encryption" within the server properties, the mode is likewise set to "No encryption" here, and cannot be changed. The field is then deactivated.
*Encryption preferred
When "Encryption preferred" is selected, the voice data is only encrypted if the gateway likewise supports encryption. If this is not the case, the voice data is not encrypted, but phoning is still possible.
*Encryption mandatory
When "Encryption mandatory" is selected, voice data encryption is obligatory. This means that either encryption always occurs or the call is aborted with the reason "Incompatible encryption settings". This can be the case, for example, if the gateway does not permit any encryption.
* 
If the encryption mode was set to "No encryption" within the server properties, the mode is likewise set to "No encryption" here; if "Encryption mandatory" was configured there, then the setting "Encryption mandatory" also appears here. In both cases, the mode cannot be changed. The field is then deactivated.
 
See also Encryption.
Key (PreSharedKey)
To ensure secure communication by SRTP between SwyxServer and gateway, a common key (PreSharedKey) must be defined between them.
For all components which use the SwyxWare database (e.g. SwyxIt!, PhoneMgr, LinkMgr, ConferenceMgr,), this key is automatically generated by SwyxServer and distributed to the relevant component, once again encrypted.
It is different for the SIP gateway trunk. In this case the key must be entered manually. In addition, the key stored here must also be entered on the gateway.
* 
A key length of less than 10 characters is not advisable. Longer keys offer greater security, and keys can be up to 128 characters long. In order to make brute-force or dictionary attacks more difficult, the key should consist of a combination of letters, numbers and special characters.
 
This is how you specify the encryption mode for a SIP link trunkĀ 
1 Start the SwyxWare Administration and log on to the SwyxServer.
2 In the left side of the SwyxWare Administration window, click on "Trunks", and in the right-hand window select the trunk you want to configure.
3 Select "Properties".
4 Select the "Encryption" tab.
5 In the field "Encryption mode", choose from:
*No encryption
*Encryption preferred
*Encryption mandatory
6 Enter the key in the "Key" field. The key must also be entered on the gateway.
7 Click on "OK".
Last modified date: 01/24/2024