Can Janus use DTLS v1.2 only?

223 views
Skip to first unread message

Eugene F.

unread,
Mar 2, 2022, 1:16:00 AM3/2/22
to meetecho-janus
Hello everyone.
We`ve faced a very peculiar problem: a firewall that we can't control blocks DTLS v1.0 handshakes but allows DTLS v1.2 ones. This is why we can make videocalls only if a browser and Janus decided to use DTLS v1.2.
Can we configure Janus to use only DTLS v1.2? Or maybe there are ways to set DTLS v1.2 from JavaScript code in a browser? So far I haven't found straightforward options.

Lorenzo Miniero

unread,
Mar 2, 2022, 3:07:44 AM3/2/22
to meetecho-janus
You'll have to edit the code for that, I think. Anyway, I think the DTLS allows for both 1.0 and 1.2.

L.

Lorenzo Miniero

unread,
Mar 2, 2022, 3:08:16 AM3/2/22
to meetecho-janus
*the DTLS we send

Ильгам Габдуллин

unread,
Mar 2, 2022, 6:26:05 AM3/2/22
to meetecho-janus
We are facing the same problem :(
Is it possible to implement this configuration in janus so we could specify the version of DTLS?
Or may be you could show us where to change the code?

среда, 2 марта 2022 г. в 11:07:44 UTC+3, lmin...@gmail.com:

Lorenzo Miniero

unread,
Mar 2, 2022, 7:12:43 AM3/2/22
to meetecho-janus
Check the code here, we do different things depending on the crypto library:

When using OpenSSL, we just call the version-flexible DTLS_method() that offers both.

L.

Eugene F.

unread,
Mar 2, 2022, 9:15:34 AM3/2/22
to meetecho-janus
Thanks a lot!!

Ильгам Габдуллин

unread,
Mar 3, 2022, 2:25:36 AM3/3/22
to meetecho-janus
Did you try to use only DTLS v1.2 ?
I am interested if it solved the problem 

среда, 2 марта 2022 г. в 17:15:34 UTC+3, evgenyf...@gmail.com:

Eugene F.

unread,
Mar 4, 2022, 11:20:11 PM3/4/22
to meetecho-janus
Actually, the thing that helped was an UDP relay: it packs all the DTLS into STUN packets so firewalls don't cut em off
Reply all
Reply to author
Forward
0 new messages