-
Notifications
You must be signed in to change notification settings - Fork 4
/
coturn.yml
71 lines (62 loc) · 1.88 KB
/
coturn.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
---
- hosts: homelab
vars:
application: coturn
docker_network:
name: host
handlers:
- name: Restart
community.docker.docker_container:
name: "{{ application }}"
restart: true
comparisons:
'*': ignore
tasks:
- name: Create config folder
ansible.builtin.file:
path: "{{ config_directory }}"
state: directory
owner: "{{ common_user }}"
group: "{{ common_root_group }}"
mode: "0771"
- name: Create config
ansible.builtin.copy:
content: |
realm={{ application }}.{{ common_tld }}
listening-ip=0.0.0.0
fingerprint
verbose
{% for k, v in coturn_users.items() %}
user={{ k }}:{{ v }}
{% endfor %}
lt-cred-mech
no-cli
pidfile=/var/tmp/turnserver.pid
cert=/etc/coturn/turn_server_cert.pem
pkey=/etc/coturn/turn_server_pkey.pem
dest: "{{ config_directory }}/turnserver.conf"
owner: "{{ common_user }}"
group: "{{ common_root_group }}"
mode: "0744"
notify: Restart
- name: Create container
ansible.builtin.include_role:
name: docker_container
vars:
image: ghcr.io/coturn/coturn:4.6.2
tmpfs:
- /var/lib/coturn:rw,mode=01777
volumes:
- "{{ config_directory }}/turnserver.conf:/etc/coturn/turnserver.conf"
- "{{ config_directory }}/turn_server_cert.pem:/etc/coturn/turn_server_cert.pem"
- "{{ config_directory }}/turn_server_pkey.pem:/etc/coturn/turn_server_pkey.pem"
# # port forward these in the router
# published_ports:
# # STUN
# - 3478:3478
# - 3478:3478/udp
# # TURN over TLS
# - 5349:5349
# - 5349:5349/udp
# # P2P
# - 49152-65535:49152-65535/udp