Coturn: disallow 10.0.0.0/8 subnet, disable verbose mode, update readme

This commit is contained in:
Ivan R. 2024-10-05 14:48:04 +05:00
parent b9b69a4482
commit fbc478becd
No known key found for this signature in database
GPG key ID: 56C7BAAE859B302C
2 changed files with 15 additions and 13 deletions

View file

@ -12,6 +12,8 @@ Available at [comfycamp.space](https://comfycamp.space).
| 3003 | Minio console | | | 3003 | Minio console | |
| 3004 | Forgejo | [git.comfycamp.space](https://git.comfycamp.space) | | 3004 | Forgejo | [git.comfycamp.space](https://git.comfycamp.space) |
| 3005 | Synapse | | | 3005 | Synapse | |
| 3478 tcp/udp | Coturn | |
| 8022 | Forgejo SSH | | | 8022 | Forgejo SSH | |
| 8448 | Synapse/Haproxy | | | 8448 | Synapse/Haproxy | |
| 9000 | Minio | | | 9000 | Minio | |
| 49152 - 65535 udp | Coturn | |

View file

@ -151,7 +151,7 @@ external-ip={{ external_ip }}
# Uncomment to run TURN server in 'normal' 'moderate' verbose mode. # Uncomment to run TURN server in 'normal' 'moderate' verbose mode.
# By default the verbose mode is off. # By default the verbose mode is off.
verbose #verbose
# Uncomment to run TURN server in 'extra' verbose mode. # Uncomment to run TURN server in 'extra' verbose mode.
# This mode is very annoying and produces lots of output. # This mode is very annoying and produces lots of output.
@ -638,7 +638,7 @@ syslog
# don't let the relay ever try to connect to private IP address ranges within your network (if any) # don't let the relay ever try to connect to private IP address ranges within your network (if any)
# given the turn server is likely behind your firewall, remember to include any privileged public IPs too. # given the turn server is likely behind your firewall, remember to include any privileged public IPs too.
#denied-peer-ip=10.0.0.0-10.255.255.255 denied-peer-ip=10.0.0.0-10.255.255.255
denied-peer-ip=192.168.0.0-192.168.255.255 denied-peer-ip=192.168.0.0-192.168.255.255
denied-peer-ip=172.16.0.0-172.31.255.255 denied-peer-ip=172.16.0.0-172.31.255.255