simon/nixos-config
simon/nixos-config
1
1
Fork 0
Code Issues 8 Pull requests Actions Projects Activity

vueko/coturn: Enable plain connections

Browse source 
(D)TLS connections are obviously better, but they stopped working some
time ago and I can’t figure out why.
This commit is contained in:
Simon Bruder 2021-09-26 22:22:31 +02:00
parent 400893b168
commit 59655fd1b0
Signed by: simon
GPG key ID: 8D3C82F9F309F8EC
2 changed files with 6 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
machines/fuuko/services/matrix/synapse.nix
View file

@ -40,6 +40,8 @@ in
turn_uris = [
"turns:turn.sbruder.de:5349?transport=udp"
"turns:turn.sbruder.de:5349?transport=tcp"
"turn:turn.sbruder.de:3478?transport=udp"
"turn:turn.sbruder.de:3478?transport=tcp"
];
turn_user_lifetime = "3600000"; # 1h

9
machines/vueko/services/coturn.nix
View file

@ -14,10 +14,9 @@ let
# not needed for VoIP
no-tcp-relay = true;
# only tls
no-cli = true;
no-tcp = true;
no-udp = true;
listening-port = 3478;
tls-listening-port = 5349;
cert = "/run/turnserver/fullchain.pem";
@ -117,8 +116,8 @@ in
};
networking.firewall = {
allowedTCPPorts = [ cfg.tls-listening-port ];
allowedUDPPorts = [ cfg.tls-listening-port ];
allowedTCPPorts = [ cfg.listening-port cfg.tls-listening-port ];
allowedUDPPorts = [ cfg.listening-port cfg.tls-listening-port ];
allowedUDPPortRanges = lib.singleton {
from = cfg.min-port;