Firewall Configuration

[jyb...@salin.co.kr]

Hi, All.

I want a firewall configuration like Zoom and Google Meet.

My environment is like this.

1.Janus Gateway 0.10.10: Websocket(443)

2. STUN, TURN: coTurn(443)

How can I do it?

Regards,

David.

[Kaplan]

Hi there, what exactly do you mean " like Zoom and Google Meet." ?

[jyb...@salin.co.kr]

Thank you very much for reply, Kaplan.

1. janus is trying to work inside Network Firewall and NAT.

2. Zoom(https://zoom.us) and Google Meet work in #1 environment. Don't do my Janus setup doesn't work (tested with Janus Demo)

Janus Server is installed on AWS EC2.

I tried various things and I got better little by little, but in certain circumstances I got the same result as #2.

Can you help?

Regards, 

David.

2021년 2월 22일 월요일 오후 11시 50분 34초 UTC+9에 Kaplan님이 작성:

[Kaplan]

Hi David,

Try this on EC2, make sure you open the ports on the EC2 firewall that you need (UDP port range from 5000-65000) and any other tcp port that you need,  then on the janus config

make sure that you change change nat_1_1mapping=__PUBLIC__IP. (the public IP of your EC2 instance)

[jyb...@salin.co.kr]

Hi Kaplan.

I did it like you answer.

Will there be more?

Regards, david.

2021년 2월 23일 화요일 오후 3시 31분 42초 UTC+9에 Kaplan님이 작성:

[Kaplan]

H David, make sure you also have a stun/turn server configured on you javascript side:

example:

janus = new Janus(

{

server: service.server,

iceServers: turnServers,

success: function () {

// Attach to video room test plugin

sess.janus.attach(

......

Where turnServers is something like this:

= [ { "urls": ["stun:stun.l.google.com:19302"]}]

[jyb...@salin.co.kr]

Yes, I did it. Kaplan.

Is there anything else I need to prepare?

Could network firewall solution be completely solved?

2021년 2월 23일 화요일 오후 4시 25분 37초 UTC+9에 Kaplan님이 작성:

[Kaplan]

Hi David,

This will take care of most regular issues. there is always the issue with corporate firewalls or more restrictive firewall, where perhaps the firewall blocks UDP traffic, or worse, say only allow https and thats it.

For those cases, a more involved solution is needed, like perhaps webrtc over TCP using a dedicated ICE server, that is beyond my knowledge..

[Mirko Brankovic]

You will need to set up a Turn server and see if that will help in a restrictive network. 

CoTurn can act as Turn, but there are few more open source examples

--
You received this message because you are subscribed to the Google Groups "meetecho-janus" group.
To unsubscribe from this group and stop receiving emails from it, send an email to meetecho-janu...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/meetecho-janus/8ac61386-5508-479e-9de7-3224e7156b96n%40googlegroups.com.

--

Regards,

Mirko

[jyb...@salin.co.kr]

Hello, Kaplan.

Thank you for the reply.

I am using it as you said.

Thank you so much again.

Regards, david.

2021년 2월 23일 화요일 오후 7시 49분 29초 UTC+9에 Kaplan님이 작성:

[jyb...@salin.co.kr]

Hi Mirko.

Thank you for reply.

I did it as you said.

I haven't found a coTurn case either.

Unfortunately, I'm also looking for it.

Regards, david.

2021년 2월 23일 화요일 오후 7시 54분 44초 UTC+9에 mirkobr...@gmail.com님이 작성: