make changes for working turns

This commit is contained in:
Jakobus Schürz 2023-04-24 00:39:20 +02:00
parent 7dbc06b75a
commit 8a236244b5

View file

@ -1,4 +1,5 @@
# TURN server name and realm # TURN server name and realm
# realm can be domain or <IP-ADDRESS>
realm=<DOMAIN> realm=<DOMAIN>
server-name=pairdrop server-name=pairdrop
@ -6,13 +7,18 @@ server-name=pairdrop
listening-ip=0.0.0.0 listening-ip=0.0.0.0
# External IP-Address of the TURN server # External IP-Address of the TURN server
# if you have a VPN for example on your Server...
#external-ip=<IP_ADDRESS>/<OTHER_IP_ADDRESS>
external-ip=<IP_ADDRESS> external-ip=<IP_ADDRESS>
# relay-ip is needed for tls turns connections
relay-ip=<IP_ADDRESS>
# Main listening port # Main listening port
listening-port=3478 listening-port=3478
# 443 for TURN over TLS, which can bypass firewalls
# the standard-port is 5349
tls-listening-port=443
# Further ports that are open for communication # Further ports that are open for communication
min-port=10000 min-port=10000
max-port=20000 max-port=20000
@ -34,9 +40,13 @@ user=user:password
lt-cred-mech lt-cred-mech
# SSL certificates # SSL certificates
cert=/etc/letsencrypt/live/<DOMAIN>/cert.pem cert=/etc/letsencrypt/fullchain.pem
pkey=/etc/letsencrypt/live/<DOMAIN>/privkey.pem pkey=/etc/letsencrypt/privkey.pem
dh-file=/etc/dhparam.pem
# 443 for TURN over TLS, which can bypass firewalls # For security-reasons disable old ssl and tls-protocols
# the standard-port is 5349 no-sslv3
tls-listening-port=443 no-tlsv1
no-tlsv1_1
stale-nonce=600