Skip to content

Commit

Permalink
Update turnserver.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@steveseguin
steveseguin authored Sep 10, 2020
1 parent b8cfecb commit 0d16068
Showing 1 changed file with 8 additions and 7 deletions.
15 changes: 8 additions & 7 deletions turnserver.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,12 +17,6 @@ TURNSERVER_ENABLED=1
Next make sure you have the DNS pointing to your IP address for this next step (ipv4 + ipv6 if possible). You will need to validate that in the next step.
```
sudo certbot certonly --standalone
```
Replace turn.obs.ninja with the domain name you registered certbot with. If the file is not found, things did not work.
```
sudo chmod 755 /etc/letsencrypt/live/
ls /etc/letsencrypt/live/turn.obs.ninja/fullchain.pem
sudo apt install net-tools
```
note: If you run into error 701 issues with your TURN server, check that the coturn service has access to your new SSL certificates:
Expand All @@ -37,6 +31,13 @@ sudo ufw allow 443/udp
sudo ufw allow 49152:65535/tcp
sudo ufw allow 49152:65535/udp
```

Now wet the User and Group to root, as this fixes an issue with Lets Encrypt. .. I welcome a better solution tho.
```
sudo vi /usr/lib/systemd/system/coturn.service
sudo systemctl daemon-reload
```

Update turnserver.conf with passwords, domain names, and whatever else that needs changing. Example contents are provided below. Once you have updated it, start the TURN server and ensure it started correctly.
```
sudo vi /etc/turnserver.conf
Expand Down Expand Up @@ -97,7 +98,7 @@ dh2066
# verbose
no-stdout-log
## bypass soem letsencrypt bugs; easier than modifying the service. optional
## optional
proc-user=root
proc-group=root
Expand Down

0 comments on commit 0d16068

Please sign in to comment.