DeforaNetworks/jitsi-meet
DeforaNetworks/jitsi-meet
3
0
Fork 0
Code Releases Activity

Move STUN/TURN to IANA-assigned ports - 3478 and 5349 (TLS) (#6172)

Browse Source 
* Move STUN/TURN to IANA-assigned ports - 3478 and 5349 (TLS)

* Change remaining references to TURNS port from 4445 to 5349

* Change back TURNS to 443
This commit is contained in:
Frank de Lange 2020-07-07 15:14:28 +02:00 committed by GitHub
parent 8a19a34d19
commit 29c16e42bd
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
5 changed files with 8 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
config.js
View File

@ -361,7 +361,7 @@ var config = {
// The STUN servers that will be used in the peer to peer connections // The STUN servers that will be used in the peer to peer connections
stunServers: [ stunServers: [
// { urls: 'stun:jitsi-meet.example.com:4446' }, // { urls: 'stun:jitsi-meet.example.com:3478' },
{ urls: 'stun:meet-jit-si-turnrelay.jitsi.net:443' } { urls: 'stun:meet-jit-si-turnrelay.jitsi.net:443' }
] ]

4
debian/jitsi-meet-turnserver.postinst vendored
View File

@ -49,7 +49,7 @@ case "$1" in
# nothing to do # nothing to do
echo "------------------------------------------------" echo "------------------------------------------------"
echo "" echo ""
echo "turnserver is listening on tcp 4445 as other nginx sites use port 443" echo "turnserver is listening on tcp 5349 as other nginx sites use port 443"
echo "" echo ""
echo "------------------------------------------------" echo "------------------------------------------------"
NGINX_MULTIPLEXING="false" NGINX_MULTIPLEXING="false"
@ -152,7 +152,7 @@ case "$1" in
PROSODY_HOST_CONFIG="/etc/prosody/conf.avail/$JVB_HOSTNAME.cfg.lua" PROSODY_HOST_CONFIG="/etc/prosody/conf.avail/$JVB_HOSTNAME.cfg.lua"
if [ -f $PROSODY_HOST_CONFIG ] ; then if [ -f $PROSODY_HOST_CONFIG ] ; then
# If we are not multiplexing we need to change the port in prosody config # If we are not multiplexing we need to change the port in prosody config
sed -i 's/"443"/"4445"/g' $PROSODY_HOST_CONFIG sed -i 's/"443"/"5349"/g' $PROSODY_HOST_CONFIG
invoke-rc.d prosody restart || true invoke-rc.d prosody restart || true
fi fi
fi fi

4
doc/debian/jitsi-meet-prosody/prosody.cfg.lua-jvb.example
View File

@ -6,8 +6,8 @@ muc_mapper_domain_base = "jitmeet.example.com";
turncredentials_secret = "__turnSecret__"; turncredentials_secret = "__turnSecret__";
turncredentials = { turncredentials = {
{ type = "stun", host = "jitmeet.example.com", port = "4446" }, { type = "stun", host = "jitmeet.example.com", port = "3478" },
{ type = "turn", host = "jitmeet.example.com", port = "4446", transport = "udp" }, { type = "turn", host = "jitmeet.example.com", port = "3478", transport = "udp" },
{ type = "turns", host = "jitmeet.example.com", port = "443", transport = "tcp" } { type = "turns", host = "jitmeet.example.com", port = "443", transport = "tcp" }
}; };

4
doc/debian/jitsi-meet-turn/turnserver.conf
View File

@ -10,8 +10,8 @@ no-cli
no-loopback-peers no-loopback-peers
no-tcp-relay no-tcp-relay
no-tcp no-tcp
listening-port=4446 listening-port=3478
tls-listening-port=4445 tls-listening-port=5349
external-ip=__external_ip_address__ external-ip=__external_ip_address__
no-tlsv1 no-tlsv1
no-tlsv1_1 no-tlsv1_1

2
doc/debian/jitsi-meet/jitsi-meet.conf
View File

@ -7,7 +7,7 @@ stream {
server 127.0.0.1:4444; server 127.0.0.1:4444;
} }
upstream turn { upstream turn {
server 127.0.0.1:4445; server 127.0.0.1:5349;
} }
# since 1.13.10 # since 1.13.10
map $ssl_preread_alpn_protocols $upstream { map $ssl_preread_alpn_protocols $upstream {