2020-05-07 16:07:12 +02:00
|
|
|
## Minimal version of /etc/tunserver.conf
|
|
|
|
## For more options and info see the original /etc/turnserver.conf.bak
|
|
|
|
|
|
|
|
# Which porst to listen on, make sure the corresponding ports are accepting UDP connections on your firewall
|
|
|
|
listening-port=3478
|
|
|
|
tls-listening-port=5349
|
|
|
|
|
|
|
|
# Your external IP, needed for some connections
|
|
|
|
listening-ip=CUSTOMIZE THIS
|
|
|
|
|
2020-05-07 19:38:42 +02:00
|
|
|
# Your domain name
|
|
|
|
realm=myserver.org
|
|
|
|
|
2020-05-07 16:07:12 +02:00
|
|
|
# Ports that client can connect to. Again make sure they are open for UDP connections on your firewall
|
|
|
|
min-port=49152
|
|
|
|
max-port=65535
|
|
|
|
|
|
|
|
# For the connection with Prosody. Generate a long passphrase for the secret.
|
|
|
|
use-auth-secret
|
|
|
|
static-auth-secret=CUSTOMIZE THIS
|
|
|
|
|
2020-05-07 16:31:08 +02:00
|
|
|
#Paths to Let's Encrypt certificates
|
|
|
|
cert=/etc/letsencrypt/live/myserver.org/cert.pem
|
2020-05-07 16:07:12 +02:00
|
|
|
pkey=/etc/letsencrypt/live/myserver.org/privkey.pem
|
|
|
|
|
|
|
|
# Log to syslog
|
|
|
|
syslog
|
|
|
|
|
|
|
|
# For security:
|
2020-05-07 19:49:09 +02:00
|
|
|
# disallow server fingerprinting
|
|
|
|
prod
|
|
|
|
#dissalow connections on lo interface
|
|
|
|
no-loopback-peers
|
|
|
|
# disable command-line access
|
|
|
|
no-cli
|
2020-05-07 16:07:12 +02:00
|
|
|
|