TURN server security best practices + coturn hardening guide
14 views
Skip to first unread message
Sandro Gauci
Feb 26, 2026, 3:22:57 AM (6 days ago) Feb 26
to discuss-webrtc
Published two guides on TURN server security:
1. Implementation-agnostic best practices covering IP range blocking, protocol hardening, rate limiting, and deployment patterns for SFU-first vs P2P architectures: https://www.enablesecurity.com/blog/turn-security-best-practices/
2. coturn-specific configuration guide with three complete config templates (minimal to high-security): https://www.enablesecurity.com/blog/coturn-security-configuration-guide/
Config templates are also on GitHub with a Docker test environment for validation: https://github.com/EnableSecurity/coturn-secure-config
These are companions to the TURN security threats analysis published earlier this month.
1. Implementation-agnostic best practices covering IP range blocking, protocol hardening, rate limiting, and deployment patterns for SFU-first vs P2P architectures: https://www.enablesecurity.com/blog/turn-security-best-practices/
2. coturn-specific configuration guide with three complete config templates (minimal to high-security): https://www.enablesecurity.com/blog/coturn-security-configuration-guide/
Config templates are also on GitHub with a Docker test environment for validation: https://github.com/EnableSecurity/coturn-secure-config
These are companions to the TURN security threats analysis published earlier this month.
Reply all
Reply to author
Forward
0 new messages