-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathmain.yml
86 lines (76 loc) · 2.96 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
---
coturn_listening_port: 3478
# The alt listening ports require `coturn_no_rfc5780: False`
#coturn_alt_listening_port:
coturn_tls_listening_port: 5349
#coturn_alt_tls_listening_port:
coturn_no_rfc5780: True
coturn_no_stun_backward_compability: True
# If no IP(s) specified then all IPv4 and IPv6 system IPs will be used for listening.
coturn_listening_ips: []
# (D)TLS is currently unsupported by Nextcloud Talk and does not have a real
# security benefit anyway. For further information, see:
# * https://github.com/coturn/coturn/issues/33
# * https://github.com/nextcloud/spreed/issues/257
coturn_tls: False
coturn_tls_cert: /usr/local/etc/turn_server_cert.pem
coturn_tls_key: /usr/local/etc/turn_server_pkey.pem
coturn_dhparam_length: 2048
coturn_denied_peer_ips:
- 0.0.0.0-0.255.255.255
- 10.0.0.0-10.255.255.255
- 100.64.0.0-100.127.255.255
- 127.0.0.0-127.255.255.255
- 169.254.0.0-169.254.255.255
- 172.16.0.0-172.31.255.255
- 192.0.0.0-192.0.0.255
- 192.0.2.0-192.0.2.255
- 192.88.99.0-192.88.99.255
- 192.168.0.0-192.168.255.255
- 198.18.0.0-198.19.255.255
- 198.51.100.0-198.51.100.255
- 203.0.113.0-203.0.113.255
- 240.0.0.0-255.255.255.255
- ::1
- 64:ff9b::-64:ff9b::ffff:ffff
- ::ffff:0.0.0.0-::ffff:255.255.255.255
- 100::-100::ffff:ffff:ffff:ffff
- 2001::-2001:1ff:ffff:ffff:ffff:ffff:ffff:ffff
- 2002::-2002:ffff:ffff:ffff:ffff:ffff:ffff:ffff
- fc00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
- fe80::-febf:ffff:ffff:ffff:ffff:ffff:ffff:ffff
coturn_allowed_peer_ips: []
# 1 for verbose, 2 for Verbose (very verbose)
coturn_verbosity: 0
# Total allocation quota.
# default value is 0 (no quota).
#
# Number of allowed simultaneous connections to the TURN server. Along with
# max-bps and bps-capacity it can be used to limit the effects of a DoS attack
# against the TURN server. The value of 0 means unlimited; if a connection
# limit is desired it should be adjusted depending on your specific setup.
#
# see: https://tools.ietf.org/html/rfc8656#section-21.3.1
#
# A reasonable default as per the fine people of matrix/synapse is 1200.
# 100 simultaneous calls with a maximum 12 allocations.
coturn_total_quota: 1200
# Per-user allocation quota
#
# Upstream default value is 0 (no quota, unlimited number of sessions per
# user).
#
# A reasonable default as per the fine people of matrix/synapse is 12:
# 4 streams per video call, so 12 streams = 3 simultaneous relayed calls per
# user.
#
# see: https://github.com/matrix-org/synapse/blob/develop/docs/turn-howto.md
coturn_user_quota: 12
# Max bytes-per-second bandwidth a TURN session is allowed to handle (input and
# output network streams are treated separately). Anything above that limit
# will be dropped or temporary suppressed (within the available buffer limits).
coturn_max_bps: 0
# Maximum server capacity. Total bytes-per-second bandwidth the TURN server is
# allowed to allocate for the sessions, combined (input and output network
# streams are treated separately).
coturn_bps_capacity: 0