ungleich-intern/matrix-docker-compose
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

add ssl to turn server

Browse source
This commit is contained in:
Nico Schottelius 2023-10-17 13:23:05 +02:00
parent 54768ea037
commit 782e5ada3c
2 changed files with 35 additions and 32 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

59
ansible/roles/docker-compose/files/coturn/docker-compose.yaml
View file

@ -3,38 +3,41 @@ services:
coturn: coturn:
image: coturn/coturn:latest image: coturn/coturn:latest
restart: unless-stopped restart: unless-stopped
# environment: network_mode: "host"
# - HOSTNAME=${hostname}
# - LISTENPORT=${listenport}
# - TLSPORT=${tlsport}
# - MINPORT=${minport}
# - MAXPORT=${maxport}
# - AUTHSECRET=${authsecret}
ports:
# STUN/TURN
- "3478:3478"
- "3478:3478/udp"
- "3479:3479"
- "3479:3479/udp"
- "80:80"
- "80:80/udp"
## STUN/TURN SSL
- "5349:5349"
- "5349:5349/udp"
- "5350:5350"
- "5350:5350/udp"
- "443:443"
- "443:443/udp"
- "49152-49252:49152-49252"
- "49152-49252:49152-49252/udp"
# Relay Ports
- "49152-65535:49152-65535"
- "49152-65535:49152-65535/udp"
volumes: volumes:
- ./turnserver.conf:/etc/turnserver.conf - ./turnserver.conf:/etc/turnserver.conf
- ./coturn/privkey.pem:/etc/ssl/private/privkey.pem:ro - ./coturn/privkey.pem:/etc/ssl/private/privkey.pem:ro
- ./coturn/cert.pem:/etc/ssl/certs/cert.pem:ro - ./coturn/cert.pem:/etc/ssl/certs/cert.pem:ro
network_mode: "host" - ./nginx:/etc/nginx/conf.d
- /ssl:/ssl
# # environment:
# # - HOSTNAME=${hostname}
# # - LISTENPORT=${listenport}
# # - TLSPORT=${tlsport}
# # - MINPORT=${minport}
# # - MAXPORT=${maxport}
# # - AUTHSECRET=${authsecret}
# ports:
# # STUN/TURN
# - "3478:3478"
# - "3478:3478/udp"
# - "3479:3479"
# - "3479:3479/udp"
# - "80:80"
# - "80:80/udp"
# ## STUN/TURN SSL
# - "5349:5349"
# - "5349:5349/udp"
# - "5350:5350"
# - "5350:5350/udp"
# - "443:443"
# - "443:443/udp"
# - "49152-49252:49152-49252"
# - "49152-49252:49152-49252/udp"
# # Relay Ports
# - "49152-65535:49152-65535"
# - "49152-65535:49152-65535/udp"
# command: sh -c "/etc/turnserver.conf.sh" # command: sh -c "/etc/turnserver.conf.sh"
# entrypoint: sh -c "docker-entrypoint.sh && /etc/turnserver.conf.sh && chmod -R 777 /etc/turnsever.conf" # entrypoint: sh -c "docker-entrypoint.sh && /etc/turnserver.conf.sh && chmod -R 777 /etc/turnsever.conf"
# depends_on: # depends_on:

8
ansible/roles/docker-compose/files/coturn/turnserver.conf
View file

@ -1,4 +1,4 @@
realm=turn.corp- realm=turn.corp-serv.net
no-tcp-relay no-tcp-relay
listening-ip=0.0.0.0 listening-ip=0.0.0.0
listening-port=3478 listening-port=3478
@ -11,6 +11,6 @@ pidfile=/var/tmp/turnserver.pid
use-auth-secret use-auth-secret
static-auth-secret=ihaaCac6Oow3ohzuvequ6esoo9eegheex static-auth-secret=ihaaCac6Oow3ohzuvequ6esoo9eegheex
# tls-listening-port=5349 tls-listening-port=5349
# pkey=/etc/ssl/private/privkey.pem pkey=/ssl/certificate.keyplain
# cert=/etc/ssl/certs/cert.pem cert=/ssl/chain.crt