add coturn service
This commit is contained in:
4
roles/coturn/files/certbot-cron
Normal file
4
roles/coturn/files/certbot-cron
Normal file
@@ -0,0 +1,4 @@
|
||||
SHELL=/bin/sh
|
||||
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
|
||||
|
||||
0 */12 * * * root test -x /usr/bin/certbot -a \! -d /run/systemd/system && perl -e 'sleep int(rand(43200))' && certbot -q renew --no-random-sleep-on-renew; setfacl -R -m u:turnserver:rx /etc/letsencrypt/; systemctl restart coturn;
|
||||
17
roles/coturn/files/turnserver.conf
Normal file
17
roles/coturn/files/turnserver.conf
Normal file
@@ -0,0 +1,17 @@
|
||||
tls-listening-port=__PORT__
|
||||
listening-ip=__IP_CONTAINER__
|
||||
relay-ip=__IP_CONTAINER__
|
||||
external-ip=__IP_EXT__
|
||||
server-name=__HOSTNAME__
|
||||
lt-cred-mech
|
||||
realm=__HOSTNAME__
|
||||
#use-auth-secret
|
||||
#static-auth-secret=""
|
||||
cert=__SSL_CRT__
|
||||
pkey=__SSL_KEY__
|
||||
no-stdout-log
|
||||
cipher-list="EECDH+AESGCM:EDH+AESGCM"
|
||||
ec-curve-name=secp384r1
|
||||
dh2066
|
||||
no-tlsv1
|
||||
no-tlsv1_1
|
||||
Reference in New Issue
Block a user