systemctl restart snap.spreedme.spreed-webrtc.service each time for begin a call
johnfelipe opened this issue · comments
wget https://raw.githubusercontent.com/nextcloud/vm/master/apps/spreedme.sh
nano spreedme.sh
Change this
# Install Nextcloud Spreedme Snap
if [ -d "$SNAPDIR" ]
then
echo "SpreeMe Snap already seems to be installed and wil now be re-installed..."
snap remove spreedme
rm -rf "$SNAPDIR"
snap install spreedme
else
snap install spreedme
fi
To this
# Install Nextcloud Spreedme Snap
if [ -d "$SNAPDIR" ]
then
echo "SpreeMe Snap already seems to be installed and wil now be re-installed..."
snap remove spreedme
rm -rf "$SNAPDIR"
#snap install spreedme
snap install --edge spreedme
else
#snap install spreedme
snap install --edge spreedme
fi
bash spreedme.sh
apt-get install coturn
nano /etc/turnserver.conf
#listening-port=3478
listening-port=8443
#alt-listening-port=0
alt-listening-port=3478
#listening-ip=172.17.19.101
#listening-ip=10.207.21.238
#listening-ip=2607:f0d0:1002:51::4
listening-ip=200.122.209.133
#relay-ip=172.17.19.105
#relay-ip=2607:f0d0:1002:51::5
relay-ip=200.122.209.133
#fingerprint
fingerprint
#lt-cred-mech
lt-cred-mech
#use-auth-secret
use-auth-secret
http://passwordsgenerator.net/
#static-auth-secret=north
static-auth-secret=226a67b2e0b628a92c3f79f982aa2dc86ae4ad48ec8c44f30c320af2681e1938
(generated by openssl rand -hex 32)
#realm=mycompany.org
realm=cloud.votandoando.com
#total-quota=0
total-quota=100
# bps-capacity=0
bps-capacity=0
#stale-nonce
stale-nonce
#cert=/usr/local/etc/turn_server_cert.pem
cert=/etc/letsencrypt/live/cloud.votandoando.com/cert.pem
#pkey=/usr/local/etc/turn_server_pkey.pem
pkey=/etc/letsencrypt/live/cloud.votandoando.com/privkey.pem
#cipher-list="DEFAULT"
cipher-list="ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AES:RSA+3DES:!ADH:!AECDH:!MD5"
#log-file=/var/tmp/turn.log
log-file=/var/log/turn.log
#no-stun
no-stun
#no-loopback-peers
no-loopback-peers
#no-multicast-peers
no-multicast-peers
nano /etc/default/coturn
Remove # in front of TURNSERVER_ENABLED=1
/etc/init.d/coturn restart
[ ok ] Restarting coturn (via systemctl): coturn.service.
systemctl restart snap.spreedme.spreed-webrtc.service
nano /var/snap/spreedme/current/server.conf
[http]
listen = 127.0.0.1:8080
basepath = /webrtc
root = www
[https]
[app]
stunURIs =
sessionsecret = 206f8b50e3c234c97d6e0401635dc9b71fb25beccb995ff92e708b46431238fe1e62263f514386f2076c13e359af2b4d52ab8a304d481575866ad2e12846a48c
encryptionsecret = 519d2154414b627bca1be00f23a070234a708d2fa66ac29ae3bf11e4c820c502
authorizeroomjoin = true
servertoken = 6be8b7b9275df963a96332565fb52755
serverrealm = local
extra = /usr/share/spreed-webrtc-server/extra
plugin = extra/static/owncloud.js
turnURIs = turn:200.122.209.133:8443?transport=udp turn:200.122.209.133:8443?transport=tcp
turnSecret = 226a67b2e0b628a92c3f79f982aa2dc86ae4ad48ec8c44f30c320af2681e1938
[modules]
[log]
logfile = spreed-webrtc-server.log
[users]
enabled = true
mode = sharedsecret
sharedsecret_secret = feef107448a6c06be7f02014afc1a726080ed325b29fe907b16a4e97bed0f8f0
Next:
sudo su
cd
apt install ufw -y
ip6tables -P INPUT DROP && ip6tables -P OUTPUT DROP && ip6tables -P FORWARD DROP
cp /etc/default/ufw /etc/default/ufw.bak
vi /etc/default/ufw
and set IPV6 to ‘no’ or respectively comment it out.
IPV6=no
ufw disable
ufw enable
ufw allow 80/tcp
ufw allow 443/tcp
ufw allow sshport/tcp
ufw logging medium
In addition we will set a deny rule for all the other incoming requests
ufw default deny incoming
WEBRTC
ufw allow 8443/tcp
ufw allow 8443/udp
ufw allow 49152:65535/tcp
ufw allow 49152:65535/udp
And working in office network, audio and video, but something happend, still show me this:
And only works if i do this:
root@cloud:~# systemctl restart snap.spreedme.spreed-webrtc.service
But i cant do that each time when my users need to be a call, because i cant everytime put that command, i need independence
Stay alert
anyone?
anyone?