working voip
This commit is contained in:
parent
d062eeaca7
commit
7c549f57db
GPG Key ID:
BFBAF4C975F76450
@ -40,8 +40,8 @@
|
|||||||
993 # imaps server
|
993 # imaps server
|
||||||
25 465 # smtp(s) server
|
25 465 # smtp(s) server
|
||||||
8080 # hubot
|
8080 # hubot
|
||||||
|
3478 # turn server
|
||||||
5349 # turn server
|
5349 # turn server
|
||||||
5350 # turn server
|
|
||||||
3551 # apcups
|
3551 # apcups
|
||||||
5001 # iperf server
|
5001 # iperf server
|
||||||
18080 # monero p2p
|
18080 # monero p2p
|
||||||
@ -51,6 +51,7 @@
|
|||||||
firewall.allowedUDPPorts = [
|
firewall.allowedUDPPorts = [
|
||||||
53 # powerdns
|
53 # powerdns
|
||||||
1194 # dnscrypt
|
1194 # dnscrypt
|
||||||
|
3478 # turn server
|
||||||
21027 # syncthing discovery
|
21027 # syncthing discovery
|
||||||
64738 # mumble server
|
64738 # mumble server
|
||||||
];
|
];
|
||||||
|
|||||||
25
matrix.nix
25
matrix.nix
@ -72,11 +72,11 @@ in
|
|||||||
server_name = config.var.hostname;
|
server_name = config.var.hostname;
|
||||||
|
|
||||||
# Tell users about our TURN server
|
# Tell users about our TURN server
|
||||||
turn_uris = [
|
turn_uris = with config.services.coturn; [
|
||||||
"turn:${config.var.hostname}:5349?transport=udp"
|
"turn:${realm}:${toString listening-port}?transport=udp"
|
||||||
"turn:${config.var.hostname}:5350?transport=udp"
|
"turn:${realm}:${toString listening-port}?transport=tcp"
|
||||||
"turn:${config.var.hostname}:5349?transport=tcp"
|
"turns:${realm}:${toString tls-listening-port}?transport=udp"
|
||||||
"turn:${config.var.hostname}:5350?transport=tcp"
|
"turns:${realm}:${toString tls-listening-port}?transport=tcp"
|
||||||
];
|
];
|
||||||
|
|
||||||
# Bind on localhost and used a reverse proxy
|
# Bind on localhost and used a reverse proxy
|
||||||
@ -153,6 +153,7 @@ in
|
|||||||
# needed for reliable VoIP.
|
# needed for reliable VoIP.
|
||||||
services.coturn = {
|
services.coturn = {
|
||||||
enable = true;
|
enable = true;
|
||||||
|
no-cli = true;
|
||||||
|
|
||||||
# Only allow users vouched for
|
# Only allow users vouched for
|
||||||
# by the Matrix server.
|
# by the Matrix server.
|
||||||
@ -173,16 +174,20 @@ in
|
|||||||
secure-stun = true;
|
secure-stun = true;
|
||||||
no-tcp-relay = false;
|
no-tcp-relay = false;
|
||||||
|
|
||||||
|
listening-ips = [ "0.0.0.0" ];
|
||||||
|
|
||||||
extraConfig = ''
|
extraConfig = ''
|
||||||
external-ip=${config.var.ipAddress}
|
external-ip=${config.var.ipAddress}
|
||||||
cipher-list=HIGH
|
cipher-list=HIGH
|
||||||
no-loopback-peers
|
|
||||||
no-multicast-peers
|
no-multicast-peers
|
||||||
denied-peer-ip=10.0.0.0-10.255.255.255
|
no-tlsv1
|
||||||
denied-peer-ip=192.168.0.0-192.168.255.255
|
no-tlsv1_1
|
||||||
|
mobility
|
||||||
|
#denied-peer-ip=10.0.0.0-10.255.255.255
|
||||||
|
#denied-peer-ip=192.168.0.0-192.168.255.255
|
||||||
allowed-peer-ip=192.168.1.5
|
allowed-peer-ip=192.168.1.5
|
||||||
user-quota=12
|
#user-quota=12
|
||||||
total-quota=1200
|
#total-quota=1200
|
||||||
verbose=true
|
verbose=true
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
|||||||
@ -10,7 +10,7 @@
|
|||||||
readOnly = true;
|
readOnly = true;
|
||||||
default = {
|
default = {
|
||||||
hostname = "maxwell.ydns.eu";
|
hostname = "maxwell.ydns.eu";
|
||||||
ipAddress = "2.25.5.112";
|
ipAddress = "2.35.5.112";
|
||||||
};
|
};
|
||||||
description = "Global constants.";
|
description = "Global constants.";
|
||||||
};
|
};
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user