upstream turn_server {
server 111.222.333.444:5000;
}
server {
listen 80;
location /turn {
client_max_body_size 128k;
client_body_buffer_size 256k;
proxy_connect_timeout 70s;
proxy_send_timeout 65s;
proxy_read_timeout 65s;
proxy_buffer_size 8k;
proxy_buffers 4 64k;
proxy_busy_buffers_size 128k;
proxy_temp_file_write_size 128k;
proxy_ignore_client_abort on;
proxy_redirect off;
}
}
server {
listen 443 ssl;
ssl_prefer_server_ciphers on;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers aRSA:!eNULL:!EXP:!LOW:-RC4:-3DES:!SEED:!MD5:!kPSK:!kSRP:-kRSA:@STRENGTH:AES128-SHA:DES-CBC3-SHA:RC4-SHA;
ssl_session_cache shared:TLSSL:16m;
ssl_session_timeout 10m;
ssl_certificate /etc/nginx/ssl/example.com.crt;
ssl_certificate_key /etc/nginx/ssl/example.com.key;
location /turn {
client_max_body_size 128k;
client_body_buffer_size 256k;
proxy_connect_timeout 70s;
proxy_send_timeout 65s;
proxy_read_timeout 65s;
proxy_buffer_size 8k;
proxy_buffers 4 64k;
proxy_busy_buffers_size 128k;
proxy_temp_file_write_size 128k;
proxy_ignore_client_abort on;
proxy_redirect off;
}
}