jfinn
/
jitsi_corner5
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

fix: Updates coturn config on update. (#7306) 

* fix: Updates coturn config on update.

* fix: Updates console message.
master^2
Дамян Минков 4 years ago
parent
fcc69b92bb
commit
758b60f92b
No account linked to committer's email address
2 changed files with 29 additions and 1 deletions
Split View Show Diff Stats
  1. 28
    1
      debian/jitsi-meet-turnserver.postinst
  2. 1
    0
      doc/debian/jitsi-meet-turn/turnserver.conf

+ 28
- 1
debian/jitsi-meet-turnserver.postinst View File 

@@ -87,9 +87,36 @@ case "$1" in
87 87 
         if [[ -f $TURN_CONFIG ]] ; then
88 88 
             echo "------------------------------------------------"
89 89 
             echo ""
90 
-            echo "turnserver is already configured on this machine, skipping."
90 
+            echo "turnserver is already configured on this machine."
91 91 
             echo ""
92 92 
             echo "------------------------------------------------"
93 
+
94 
+            if grep -q "jitsi-meet coturn config" "$TURN_CONFIG" && ! grep -q "jitsi-meet coturn relay disable config" "$TURN_CONFIG" ; then
95 
+                echo "Updating coturn config"
96 
+                echo "# jitsi-meet coturn relay disable config. Do not modify this line
97 
+no-multicast-peers
98 
+no-cli
99 
+no-loopback-peers
100 
+no-tcp-relay
101 
+denied-peer-ip=0.0.0.0-0.255.255.255
102 
+denied-peer-ip=10.0.0.0-10.255.255.255
103 
+denied-peer-ip=100.64.0.0-100.127.255.255
104 
+denied-peer-ip=127.0.0.0-127.255.255.255
105 
+denied-peer-ip=169.254.0.0-169.254.255.255
106 
+denied-peer-ip=127.0.0.0-127.255.255.255
107 
+denied-peer-ip=172.16.0.0-172.31.255.255
108 
+denied-peer-ip=192.0.0.0-192.0.0.255
109 
+denied-peer-ip=192.0.2.0-192.0.2.255
110 
+denied-peer-ip=192.88.99.0-192.88.99.255
111 
+denied-peer-ip=192.168.0.0-192.168.255.255
112 
+denied-peer-ip=198.18.0.0-198.19.255.255
113 
+denied-peer-ip=198.51.100.0-198.51.100.255
114 
+denied-peer-ip=203.0.113.0-203.0.113.255
115 
+denied-peer-ip=240.0.0.0-255.255.255.255" >> $TURN_CONFIG
116 
+
117 
+                invoke-rc.d coturn restart || true
118 
+            fi
119 
+
93 120 
             db_stop
94 121 
             exit 0
95 122 
         fi

+ 1
- 0
doc/debian/jitsi-meet-turn/turnserver.conf View File 

@@ -17,6 +17,7 @@ no-tlsv1
17 17 
 no-tlsv1_1
18 18 
 # https://ssl-config.mozilla.org/#server=haproxy&version=2.1&config=intermediate&openssl=1.1.0g&guideline=5.4
19 19 
 cipher-list=ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
20 
+# jitsi-meet coturn relay disable config. Do not modify this line
20 21 
 denied-peer-ip=0.0.0.0-0.255.255.255
21 22 
 denied-peer-ip=10.0.0.0-10.255.255.255
22 23 
 denied-peer-ip=100.64.0.0-100.127.255.255

Write Preview
Loading…
Cancel
Save