PairDrop/turnserver_example.conf

# TURN server name and realm
# realm can be domain or <IP-ADDRESS>
realm=<DOMAIN>
server-name=pairdrop

# IPs the TURN server listens to
listening-ip=0.0.0.0

# External IP-Address of the TURN server
# only needed, if coturn is behind a NAT
#external-ip=<IP_ADDRESS>

# relay-ip is needed for tls turns connections
# it can be set multiple times. A local IP is sufficient (not 127.0.0.1!!)
relay-ip=<SOME_LOCAL_IP_ADDRESS>

# Main listening port
listening-port=3478

# 443 for TURN over TLS, which can bypass firewalls
tls-listening-port=5349

# Further ports that are open for communication
min-port=10000
max-port=20000

# Use fingerprint in TURN message
fingerprint

# Log file path
# - is logging to STDOUT, so it's visible in docker-compose logs 
log-file=-

# Enable verbose logging
verbose

# Specify the user for the TURN authentification
user=user:password

# Enable long-term credential mechanism
lt-cred-mech

# SSL certificates
cert=/etc/letsencrypt/fullchain.pem
pkey=/etc/letsencrypt/privkey.pem
dh-file=/etc/dhparam.pem

# For security-reasons disable old ssl and tls-protocols
no-sslv3
no-tlsv1
no-tlsv1_1

stale-nonce=600
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00			`# TURN server name and realm`
make changes for working turns 2023-04-24 00:39:20 +02:00			`# realm can be domain or <IP-ADDRESS>`
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00			`realm=<DOMAIN>`
			`server-name=pairdrop`

			`# IPs the TURN server listens to`
			`listening-ip=0.0.0.0`

			`# External IP-Address of the TURN server`
change domains, ports and ip-addresses 2023-04-24 23:28:49 +02:00			`# only needed, if coturn is behind a NAT`
			`#external-ip=<IP_ADDRESS>`
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00
make changes for working turns 2023-04-24 00:39:20 +02:00			`# relay-ip is needed for tls turns connections`
change domains, ports and ip-addresses 2023-04-24 23:28:49 +02:00			`# it can be set multiple times. A local IP is sufficient (not 127.0.0.1!!)`
			`relay-ip=<SOME_LOCAL_IP_ADDRESS>`
make changes for working turns 2023-04-24 00:39:20 +02:00
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00			`# Main listening port`
			`listening-port=3478`

make changes for working turns 2023-04-24 00:39:20 +02:00			`# 443 for TURN over TLS, which can bypass firewalls`
change domains, ports and ip-addresses 2023-04-24 23:28:49 +02:00			`tls-listening-port=5349`
make changes for working turns 2023-04-24 00:39:20 +02:00
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00			`# Further ports that are open for communication`
			`min-port=10000`
			`max-port=20000`

			`# Use fingerprint in TURN message`
			`fingerprint`

			`# Log file path`
change log-output to stdout 2023-04-23 00:58:46 +02:00			`# - is logging to STDOUT, so it's visible in docker-compose logs`
			`log-file=-`
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00
			`# Enable verbose logging`
			`verbose`

			`# Specify the user for the TURN authentification`
			`user=user:password`

			`# Enable long-term credential mechanism`
			`lt-cred-mech`

			`# SSL certificates`
make changes for working turns 2023-04-24 00:39:20 +02:00			`cert=/etc/letsencrypt/fullchain.pem`
			`pkey=/etc/letsencrypt/privkey.pem`
			`dh-file=/etc/dhparam.pem`
include example files to run an own TURN server via coturn or via docker-compose 2023-04-19 17:38:14 +02:00
make changes for working turns 2023-04-24 00:39:20 +02:00			`# For security-reasons disable old ssl and tls-protocols`
			`no-sslv3`
			`no-tlsv1`
			`no-tlsv1_1`

			`stale-nonce=600`