From 99b544491e04eb281b01abbfd74b47eea5aa13c3 Mon Sep 17 00:00:00 2001 From: Viyurz <128215328+Viyurz@users.noreply.github.com> Date: Fri, 8 Dec 2023 13:44:53 +0100 Subject: [PATCH] coturn: expand port range + synapse uses turns now --- nftables.conf | 2 +- synapse/docker-compose.yaml | 2 +- synapse/homeserver.yaml | 2 +- synapse/turnserver.conf | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/nftables.conf b/nftables.conf index 5a6d5cf..0199fa7 100755 --- a/nftables.conf +++ b/nftables.conf @@ -20,7 +20,7 @@ table inet filter { # TURN tcp dport { 3478, 5349 } limit rate 5/second accept - udp dport { 3478, 5349, 49152-49200 } limit rate 5/second accept + udp dport { 3478, 5349, 49152-49252 } limit rate 5/second accept # Allow ICMP meta l4proto icmp limit rate 1/second accept diff --git a/synapse/docker-compose.yaml b/synapse/docker-compose.yaml index 6336ec4..1fac307 100644 --- a/synapse/docker-compose.yaml +++ b/synapse/docker-compose.yaml @@ -18,7 +18,7 @@ services: - 3478:3478/udp - 5349:5349 - 5349:5349/udp - - 49152-49200:49152-49200/udp + - 49152-49252:49152-49252/udp tmpfs: - /var/lib/coturn volumes: diff --git a/synapse/homeserver.yaml b/synapse/homeserver.yaml index b72afb1..3248fd0 100644 --- a/synapse/homeserver.yaml +++ b/synapse/homeserver.yaml @@ -65,7 +65,7 @@ url_preview_ip_range_blacklist: - 'ff00::/8' - 'fec0::/10' -turn_uris: [ "turn:turn.viyurz.fr?transport=udp", "turn:turn.viyurz.fr?transport=tcp" ] +turn_uris: [ "turn:turns.viyurz.fr?transport=udp", "turn:turns.viyurz.fr?transport=tcp" ] turn_user_lifetime: 86400000 turn_allow_guests: true # vim:ft=yaml diff --git a/synapse/turnserver.conf b/synapse/turnserver.conf index 19cd756..81625ac 100644 --- a/synapse/turnserver.conf +++ b/synapse/turnserver.conf @@ -11,7 +11,7 @@ realm=turn.viyurz.fr # (default values are 49152 and 65535) # min-port=49152 -max-port=49200 +max-port=49252 # TLS certificates, including intermediate certs. # For Let's Encrypt certificates, use `fullchain.pem` here.