You can install and configure a TURN server to use with Sametime Meeting on an Ubuntu
operating system.
Before you begin
You need the following:
- A Ubuntu server with a public IP-Address
- A custom domain name
About this task
The following procedures uses Coturn open source implementation of a TURN server. The
procedure includes installing and configuring the Conturn server.
Procedure
-
Install Coturn on the Ubuntu operating system.
sudo apt-get -y update
sudo apt-get -y install coturn
-
To start the Coturn Daemon at Startup, modify the /etc/default/coturn
file.
sudo vim /etc/default/coturn
-
Remove the comment character (#) from the beginning of the following line.
-
Confige the Coturn server.
-
Make a copy of your original configuration before making any changes.
This original configuration copy can be used if a problem occurs.
-
Create an empty file in the same directory to contain your configuration.
sudo vim /etc/turnserver.conf
-
Add the following content to define the Coturn server and replace the values with appropriate
values for your configuration.
# Listener IP address of relay server. Multiple listeners can be specified.
# If no IP(s) specified in the config file or in the command line options,
# then all IPv4 and IPv6 system IPs will be used for listening.
listening-ip=0.0.0.0
# External IP-Address of the TURN server
external-ip=IP_ADDRESS
# TURN listener port for UDP and TCP (Default: 3478).
listening-port=3478
# 443 for TURN over TLS, which can bypass firewalls
tls-listening-port=443
# host domain name.
realm=mycompany.org
# Path to the SSL certificate and private key.
# Certificate file.
cert=/usr/local/etc/turn_server_cert.pem
# Private key file.
pkey=/usr/local/etc/turn_server_pkey.pem
# Lower and upper bounds of the UDP relay endpoints:
# Further ports that are open for communication
min-port=10000
max-port=20000
# This allows TURN credentials to be accounted for a specific user id.
# If you don't have a suitable id, the timestamp alone can be used.
# This option is just turning on secret-based authentication.
# The actual value of the secret is defined by option static-auth-secret,
use-auth-secret
static-auth-secret=<YOUR_SECRET>
# Option to set the log file name.
# By default, the turnserver tries to open a log file in
# /var/log, /var/tmp, /tmp and current directories directories
log-file=/var/log/turnserver.log
# Enable verbose logging
verbose
# Do not allow an TLS/DTLS version of protocol
no-tlsv1
no-tlsv1_1
no-tlsv1_2
You can make additional customizations to the file. For additional information, see the turnserver.conf file. Within the file, configuration options are described
as comments.
-
Save the file and restart the Coturn server to apply the changes.