Setting up the newest version of BBB on a private (local) network (without a public IP)

485 views
Skip to first unread message

Mohammad Khalooei

unread,
Mar 9, 2024, 7:32:46 PM3/9/24
to BigBlueButton-dev
Dear Sir/madam

I am currently exploring the installation of BigBlueButton (BBB) within a private network environment that lacks an external internet connection for a production setup. Given this scenario, I have several concerns regarding network configuration, installation processes, and how to navigate the challenges posed by recent updates.

A specific issue we're facing involves obtaining certificates, as our network does not have internet access. Typically, tools like Let's Encrypt, which do not support domains such as "bbb.local" pointing to our BBB server's IP at the production level of the private network, would be unusable in our case. I believe the solution may involve utilizing self-signed certificates, particularly for critical permissions like microphone access. Could you provide guidance or alternatives for this certificate issue?

Furthermore, I would appreciate insights into handling updates, such as version 2.7.5, within an offline setup. Are there new considerations or features that we should be aware of concerning our unique installation environment?

Additionally, through my research on GitHub and discussions in the BBB developer group, it appears there isn't a specific parameter for the bbb-install.sh script that caters to local setups without internet access at the production level. For instance, omitting the "-d" option to bypass Let's Encrypt seems to be a workaround. Could you confirm this approach or suggest a more appropriate method?

Your expertise and any advice on navigating these challenges would be invaluable as we aim to ensure a smooth and functional BBB deployment in the restricted network setting.

Thank you for your time, assistance, and consideration in advance.

Best regards,

Mohammad

Message has been deleted

Jean Pluzo

unread,
Mar 11, 2024, 4:35:19 AM3/11/24
to BigBlueButton-dev
Hi Mohammad,

in theory it should be possible to use a self-signed cert. For this you have to configure not only the server but also the clients. You have to tell all of them, both server and clients, that you yourself are the certificate authority (CA), since this is the standard procedure for CAs like letsencrypt.
AFAIK there's no option to setup BBB as "offline". You may be able to work around this by building your own local repos, but this may be more cumbersome if you don't have the knowhow.
The -d option bypasses certbot/letsencrypt and uses your own certs. Like before, you can do this (I have tested and we currently use this option) but you have to tell all servers/clients that you're the CA (see above).
Regards,
J.

Mohammad Khalooei

unread,
Mar 11, 2024, 12:30:22 PM3/11/24
to bigblueb...@googlegroups.com
Thanks a lot, Jean! 

--
You received this message because you are subscribed to the Google Groups "BigBlueButton-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bigbluebutton-dev/1fe14677-8c40-49e6-b1be-bbf7560de765n%40googlegroups.com.


--
Have a Nice Time...
Yours Sincerely,
Mohammad KHalooei


Reply all
Reply to author
Forward
0 new messages