Janus in restricted firewall not working
1,508 views
Skip to first unread message
Dhruv Majumdar
Apr 5, 2018, 9:09:44 AM4/5/18
to meetecho-janus
Hi
I have installed Janus gateway on a server and that server has a strict firewall only allowing port 8089 and 8088 for incoming connections and all outgoing traffic is open
I can see that Janus does not work properly on a server with restricted firewall.
And to make it work properly I have to set a STUN server.
I dont want to use public stun servers as they are not reliable.
Can you please suggest a STUNserver package I can install on Debain 9.
Configuration and installation tutorial for that would be really helpful as I tried coturn and stunman server and the dont work properly.
I have installed Janus gateway on a server and that server has a strict firewall only allowing port 8089 and 8088 for incoming connections and all outgoing traffic is open
I can see that Janus does not work properly on a server with restricted firewall.
And to make it work properly I have to set a STUN server.
I dont want to use public stun servers as they are not reliable.
Can you please suggest a STUNserver package I can install on Debain 9.
Configuration and installation tutorial for that would be really helpful as I tried coturn and stunman server and the dont work properly.
Mirko Brankovic
Apr 5, 2018, 3:51:44 PM4/5/18
to meetecho-janus
It probably didn't work cause you need to have udo port range that is set in janus conf, open on firewall or use Coturn as Turn server, which is a bit overhead
--
You received this message because you are subscribed to the Google Groups "meetecho-janus" group.
To unsubscribe from this group and stop receiving emails from it, send an email to meetecho-janu...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Mirko Brankovic
Apr 5, 2018, 3:52:09 PM4/5/18
to meetecho-janus
s/udo/udp/
Dhruv Majumdar
Apr 5, 2018, 5:19:46 PM4/5/18
to meetecho-janus
Thanks for getting back to me Mirko,
Dhruv
Would you have a list of protocols / ports I should ask the network guys to allow / open up for the server?
Dhruv
Dhruv Majumdar
Apr 6, 2018, 5:43:41 AM4/6/18
to meetecho-janus
Anyone have any help for me please? Would really appreciate some input as don't know what to tell the network guys to open up.
@lorenzo @Mirko?
Alessandro Toppi
Apr 6, 2018, 6:35:53 AM4/6/18
to meetecho-janus
The STUN server is only needed to let Janus self discover its public address.
As of the ports and protocols, after the signaling ports (that seems you have already taken care of), you should handle the media ports.
Fix a range in janus.cfg, then ask the IT guys to open the UDP traffic towards that range.
As of the ports and protocols, after the signaling ports (that seems you have already taken care of), you should handle the media ports.
Fix a range in janus.cfg, then ask the IT guys to open the UDP traffic towards that range.
Dhruv Majumdar
Apr 6, 2018, 6:43:29 AM4/6/18
to meetecho-janus
Thanks for getting back Alesandro
Would that be the rtp_port_range which is commented out at the moment?
Lorenzo Miniero
Apr 6, 2018, 6:49:26 AM4/6/18
to meetecho-janus
Yes.
L.
Vijay Anand
Jan 30, 2019, 7:13:53 AM1/30/19
to meetecho-janus
Hi,
In a scenario where Janus is on a public IP, but the clients are behind firewalls, I see that the the videoroom application works for some clients but doesn't work for another client at a different time. I am assuming that the RTP ports are blocked by some of the client firewalls.
How do we deal with this scenario. It may not be practical to ask every client to open up RTP/UDP ports in the firewall rules. Any recommendations?
In a scenario where Janus is on a public IP, but the clients are behind firewalls, I see that the the videoroom application works for some clients but doesn't work for another client at a different time. I am assuming that the RTP ports are blocked by some of the client firewalls.
How do we deal with this scenario. It may not be practical to ask every client to open up RTP/UDP ports in the firewall rules. Any recommendations?
Regards
Vijay
Reply all
Reply to author
Forward
0 new messages