More detail information :
TLS certification failure
Sip.conf
server A :
tlsenable=yes ; Enable server for incoming TLS (secure) connections (default is no)
tlsbindaddr=0.0.0.0 ; IP address for TLS server to bind to (0.0.0.0) binds to all interfaces)
; Optionally add a port number, 192.168.1.1:5063 (default is port 5061)
; Remember that the IP address must match the common name (hostname) in the
; certificate, so you don't want to bind a TLS socket to multiple IP addresses.
; For details how to construct a certificate for SIP see
transport=tls ;
http://tools.ietf.org/html/draft-ietf-sip-domain-certstlscertfile=</var/lib/asterisk/keys/serverB.pem>
tlscafile=</var/lib/asterisk/keys/ca.crt>
tlsdontverifyserver=[yes]
serverB:
tlsenable=yes ; Enable server for incoming TLS (secure) connections (default is no)
tlsbindaddr=0.0.0.0 ; IP address for TLS server to bind to (0.0.0.0) binds to all interfaces)
transport=tls ; Set the default transports. The order determines the primary default transport.
; If tcpenable=no and the transport set is tcp, we will fallback to UDP.
tlscertfile=</var/lib/asterisk/keys/serverB.pem>
tlscafile=</var/lib/asterisk/keys/ca.crt>
tlsdontverifyserver=[yes]
Error message :
ServerA:
SSL CA file(</var/lib/asterisk/keys/ca.crt>)/path() error
SSL certificate ok
== Problem setting up ssl connection: error:00000000:lib(0):func(0):reason(0)
[Oct 9 10:49:01] WARNING[30633]: tcptls.c:272 handle_tcptls_connection: FILE * open failed!
[Oct 9 10:49:11] WARNING[30634]: tcptls.c:272 handle_tcptls_connection: FILE * open failed!
serverB:
SSL CA file(</var/lib/asterisk/keys/ca.crt>)/path() error
SSL certificate ok
== Problem setting up ssl connection: error:00000000:lib(0):func(0):reason(0)
[Oct 9 10:50:49] WARNING[27668]: tcptls.c:272 handle_tcptls_connection: FILE * open failed!
[Oct 9 10:50:53] WARNING[27669]: tcptls.c:272 handle_tcptls_connection: FILE * open failed!