admin:services:turn.chapril.org
Différences
Ci-dessous, les différences entre deux révisions de la page.
Les deux révisions précédentesRévision précédenteProchaine révision | Révision précédente | ||
admin:services:turn.chapril.org [2020/03/21 14:13] – [DNS] fpoulain | admin:services:turn.chapril.org [2020/03/21 19:14] (Version actuelle) – [Monitoring] fpoulain | ||
---|---|---|---|
Ligne 21: | Ligne 21: | ||
==== Installation de coturn ==== | ==== Installation de coturn ==== | ||
+ | L' | ||
+ | |||
+ | Donc : | ||
+ | * apt install coturn | ||
+ | * configuration du service :<code conf / | ||
+ | listening-port=3478 | ||
+ | fingerprint | ||
+ | use-auth-secret | ||
+ | static-auth-secret=XXXXXXXXXXXXXXXXXXXXX | ||
+ | realm=turn.chapril.org | ||
+ | total-quota=100 | ||
+ | bps-capacity=0 | ||
+ | no-stdout-log | ||
+ | log-file=/ | ||
+ | syslog | ||
+ | simple-log | ||
+ | no-multicast-peers | ||
+ | no-cli | ||
+ | </ | ||
+ | * systemctl restart coturn | ||
==== Firewall ==== | ==== Firewall ==== | ||
=== Sur la VM === | === Sur la VM === | ||
+ | |||
+ | On déclare un service turn: | ||
+ | <code conf / | ||
+ | #FHVER: 1:213 | ||
+ | # La premiere ligne ci dessus est nécessaire !! | ||
+ | server_turn_ports=" | ||
+ | client_turn_ports=" | ||
+ | </ | ||
+ | |||
+ | Et on ajoute l' | ||
+ | | ||
=== Sur les hyperviseurs === | === Sur les hyperviseurs === | ||
+ | On déclare un service turn: | ||
+ | <code conf / | ||
+ | #FHVER: 1:213 | ||
+ | # La premiere ligne ci dessus est nécessaire !! | ||
+ | server_turn_ports=" | ||
+ | client_turn_ports=" | ||
+ | </ | ||
+ | |||
+ | Et on ajoute le service turn dans la liste des services à ouvrir et (pour IPv4) à rediriger vers la [[admin: | ||
+ | < | ||
+ | [" | ||
+ | </ | ||
==== Test ==== | ==== Test ==== | ||
+ | Coturn fourni un utilitaire de test, malheureusement il n'est pas packagé séparément. On installe donc un coturn minimal sur sa station de travail et on le désactive : | ||
+ | < | ||
+ | sudo apt install coturn --no-install-recommends | ||
+ | sudo systemctl disable coturn | ||
+ | sudo systemctl stop coturn | ||
+ | </ | ||
+ | |||
+ | Une fois installé on teste le service : | ||
+ | < | ||
+ | $ turnutils_uclient -v turn.chapril.org -W XXXXXXXXXXXXXXXXX -t | ||
+ | 0: IPv4. Connected from: 192.168.8.101: | ||
+ | 0: IPv4. Connected to: 88.99.233.240: | ||
+ | 0: allocate sent | ||
+ | 0: allocate response received: | ||
+ | 0: allocate sent | ||
+ | 0: allocate response received: | ||
+ | 0: success | ||
+ | 0: IPv4. Received relay addr: 192.168.1.64: | ||
+ | 0: clnet_allocate: | ||
+ | 0: refresh sent | ||
+ | 0: refresh response received: | ||
+ | 0: success | ||
+ | 0: IPv4. Connected from: 192.168.8.101: | ||
+ | 0: IPv4. Connected to: 88.99.233.240: | ||
+ | 0: IPv4. Connected from: 192.168.8.101: | ||
+ | 0: IPv4. Connected to: 88.99.233.240: | ||
+ | 0: allocate sent | ||
+ | 0: allocate response received: | ||
+ | 0: allocate sent | ||
+ | 0: allocate response received: | ||
+ | 0: success | ||
+ | 0: IPv4. Received relay addr: 192.168.1.64: | ||
+ | 0: clnet_allocate: | ||
+ | 0: refresh sent | ||
+ | 0: refresh response received: | ||
+ | 0: success | ||
+ | 0: allocate sent | ||
+ | 0: allocate response received: | ||
+ | 0: allocate sent | ||
+ | 0: allocate response received: | ||
+ | 0: success | ||
+ | 0: IPv4. Received relay addr: 192.168.1.64: | ||
+ | 0: clnet_allocate: | ||
+ | 0: refresh sent | ||
+ | 0: refresh response received: | ||
+ | 0: success | ||
+ | 0: channel bind sent | ||
+ | 1: cb response received: | ||
+ | 1: success: 0x69e2 | ||
+ | 1: channel bind sent | ||
+ | 1: cb response received: | ||
+ | 1: success: 0x69e2 | ||
+ | 1: channel bind sent | ||
+ | 1: cb response received: | ||
+ | 1: success: 0x40dd | ||
+ | 1: channel bind sent | ||
+ | 1: cb response received: | ||
+ | 1: success: 0x40dd | ||
+ | 1: channel bind sent | ||
+ | 1: cb response received: | ||
+ | 1: success: 0x6c59 | ||
+ | 1: Total connect time is 2 | ||
+ | 1: start_mclient: | ||
+ | 2: start_mclient: | ||
+ | 3: start_mclient: | ||
+ | 4: start_mclient: | ||
+ | 5: start_mclient: | ||
+ | |||
+ | ... | ||
+ | </ | ||
==== Monitoring ==== | ==== Monitoring ==== | ||
+ | C'est un peu un ovni à monitorer. On monitore la présence du process et la capacité à ouvrir une connexion TCP depuis l' |
admin/services/turn.chapril.org.1584800000.txt.gz · Dernière modification : 2020/03/21 14:13 de fpoulain