New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Document what ports must be permitted through firewall (and NAT) #203
Comments
Correct. Those are for HTTP(S).
Correct. Those are for RTP media over TCP and UDP.
Correct, those are only internally used.
4443 is not there for simplicity. Also, if UDP doesn't work the experience will be quite bad... As for the 20000-20050 that's the range for jigasi, in case you choose to deploy that to facilitate SIP access, but that's not necessary. If you choose to, 2 ports per active SIP call will be necessary.
Thank you! |
OK so that means that (for a deployment without jigasi to facilitate SIP access) it's just 3-4 ports, namely:
just to clarify / avoid misunderstanding, here you just meant the 10000/udp, right ? |
Correct. |
Continuing on #205 |
I'm trying to figure out which ports must be externally open and e.g. permit through an Firewall (both on the
firewalld
on a Fedora Server, or a VM on some Cloud Provider, or e.g. port forwarded on a home router doing NAT from a public IP to a 192.168.1.x). Being a noob and not understanding much of WebRTC and Jitsi internal architecture, and just based on this output ofdocker ps
...... I'm guessing that ports 8000 & 8443 (which I'm about to change to 80 and 443...) and also 4443 and 10000 must be open, but not those 5222/tcp, 5269/tcp, 5280/tcp, 5347/tcp on "prosody" - are those just internal among the containers, but not externally needed?
I've tried to figure this out staring at https://github.com/jitsi/docker-jitsi-meet#architecture, but I don't see the 4443 there ... plus there is 20000-20050 there, does that range need to be open? And does it mean only 50 clients can connect? 😄
@saghul would you know and be willing to confirm above or correct me? In exchange I'll make a contribution to the README to clarify this... 😄 If this is already explained on some other doc in the Jitsi project, I'd love to read it, and link it from the README.
The text was updated successfully, but these errors were encountered: