simon
/
nixos-config
1
1
Fork 0
Code Issues 8 Pull Requests Projects Releases Activity

vueko/coturn: Enable plain connections 

(D)TLS connections are obviously better, but they stopped working some
time ago and I can’t figure out why.
neomutt
Simon Bruder 2021-09-26 22:22:31 +02:00
parent 400893b168
commit 59655fd1b0
Signed by: simon
GPG Key ID: 8D3C82F9F309F8EC
2 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
machines/fuuko/services/matrix/synapse.nix
View File

@ -40,6 +40,8 @@ in
turn_uris = [
"turns:turn.sbruder.de:5349?transport=udp"
"turns:turn.sbruder.de:5349?transport=tcp"
"turn:turn.sbruder.de:3478?transport=udp"
"turn:turn.sbruder.de:3478?transport=tcp"
];
turn_user_lifetime = "3600000"; # 1h

9
machines/vueko/services/coturn.nix
View File

@ -14,10 +14,9 @@ let
# not needed for VoIP
no-tcp-relay = true;
# only tls
no-cli = true;
no-tcp = true;
no-udp = true;
listening-port = 3478;
tls-listening-port = 5349;
cert = "/run/turnserver/fullchain.pem";
@ -117,8 +116,8 @@ in
};
networking.firewall = {
allowedTCPPorts = [ cfg.tls-listening-port ];
allowedUDPPorts = [ cfg.tls-listening-port ];
allowedTCPPorts = [ cfg.listening-port cfg.tls-listening-port ];
allowedUDPPorts = [ cfg.listening-port cfg.tls-listening-port ];
allowedUDPPortRanges = lib.singleton {
from = cfg.min-port;