add app coturn (WIP)

author: Christian Pointner <equinox@spreadspace.org> 2020-03-26 01:38:00 +0100
committer: Christian Pointner <equinox@spreadspace.org> 2020-03-26 01:38:00 +0100
commit: c12adbfa7382a1ef30bbb23d2b8911b09fe5edd5 (patch)
tree: 18da68a0028310ec4b503cc4ff69b187c8efd3bc /roles/apps/coturn/templates/turnserver.conf.j2
parent: move some roles to app/ (diff)
1 files changed, 27 insertions, 0 deletions
diff --git a/roles/apps/coturn/templates/turnserver.conf.j2 b/roles/apps/coturn/templates/turnserver.conf.j2
new file mode 100644
index 00000000..9462f148
--- /dev/null
+++ b/roles/apps/coturn/templates/turnserver.conf.j2
@@ -0,0 +1,27 @@
+realm={{ coturn_realm }}
+fingerprint
+
+listening-port=3478
+# tls-listening-port=5349
+
+# cert=/etc/coturn/ssl/cert.pem
+# pkey=/etc/coturn/ssl/privkey.pem
+# dh-file=/etc/coturn/ssl/dhparam.pem
+# cipher-list="ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES128:!RSA:!ADH:!AECDH:!MD5"
+# no-tlsv1
+# no-tlsv1_1
+no-tls
+no-dtls
+
+use-auth-secret
+static-auth-secret={{ coturn_auth_secret }}
+stale-nonce=600
+
+max-bps={{ coturn_max_bps }}
+bps-capacity={{ coturn_bps_capacity }}
+relay-threads={{ coturn_threads }}
+
+no-multicast-peers
+denied-peer-ip={{ kubernetes_standalone_pod_cidr | ipaddr('network') }}-{{ kubernetes_standalone_pod_cidr | ipaddr('broadcast') }}
+
+no-cli
author	Christian Pointner <equinox@spreadspace.org>	2020-03-26 01:38:00 +0100
committer	Christian Pointner <equinox@spreadspace.org>	2020-03-26 01:38:00 +0100
commit	c12adbfa7382a1ef30bbb23d2b8911b09fe5edd5 (patch)
tree	18da68a0028310ec4b503cc4ff69b187c8efd3bc /roles/apps/coturn/templates/turnserver.conf.j2
parent	move some roles to app/ (diff)