From: Juliusz Chroboczek <jch@irif.fr>
To: Fabrice Rouillier <fabrice@rouillier.fr>
Cc: Dianne Skoll <dianne@skoll.ca>, galene@lists.galene.org
Subject: [Galene] Re: Galene in Docker [was: ANNOUNCE: galene-0.6.2]
Date: Thu, 12 Jan 2023 22:37:41 +0100 [thread overview]
Message-ID: <87r0vz4eoq.wl-jch@irif.fr> (raw)
In-Reply-To: <CED75544-EC96-4864-B710-4EB72799C036@rouillier.fr>
> Another point might also to configure the turn server in order to listen
> to the 443 port for users on restricted networks using galène in an
> other network (for example from Sorbonne University….)
That's an important point. A TURN server on an unrestricted port is
essential in order for Galene to work on networks managed by the kind of
people who still believe that blocking ports is going to improve security.
The reason why Galene puts its TURN server on port 1194 by default is that
1194 is reserved for OpenVPN, and that the Eduroam policy document¹
requires that outgoing traffic to port 1194 must be allowed. 443 is even
more likely to be open, but it's a privileged port, and hence not suitable
for the default configuration.
(A nice side-effect of putting a TURN server on a carefully chosen port is
that Galene works over TOR. But shhh...)
¹ https://www.eduroam.org/wp-content/uploads/2016/05/GN3-12-192_eduroam-policy-service-definition_ver28_26072012.pdf
-- Juliusz
next prev parent reply other threads:[~2023-01-12 21:37 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-01-11 18:57 [Galene] ANNOUNCE: galene-0.6.2 Juliusz Chroboczek
2023-01-11 19:20 ` [Galene] " Juliusz Chroboczek
2023-01-12 7:07 ` Fabrice Rouillier
2023-01-12 12:13 ` Juliusz Chroboczek
2023-01-12 12:18 ` Werner Fleck
2023-01-12 12:42 ` Juliusz Chroboczek
2023-01-12 13:55 ` Werner Fleck
2023-01-12 14:47 ` [Galene] Galene in Docker [was: ANNOUNCE: galene-0.6.2] Juliusz Chroboczek
2023-01-12 15:01 ` [Galene] " Werner Fleck
2023-01-12 15:29 ` Juliusz Chroboczek
2023-01-12 15:32 ` Fabrice Rouillier
2023-01-12 15:34 ` Dianne Skoll
2023-01-12 18:08 ` Rémy Dernat
2023-01-12 18:16 ` Dianne Skoll
2023-01-12 21:30 ` Juliusz Chroboczek
2023-01-15 21:16 ` Fabrice Rouillier
2023-01-27 9:11 ` Fabrice Rouillier
2023-01-27 11:50 ` Juliusz Chroboczek
2023-01-27 11:56 ` Fabrice Rouillier
2023-01-12 20:50 ` Fabrice Rouillier
2023-01-12 21:37 ` Juliusz Chroboczek [this message]
2023-01-12 15:18 ` [Galene] Re: ANNOUNCE: galene-0.6.2 Fabrice Rouillier
2023-01-12 17:00 ` Werner Fleck
2023-01-17 13:55 ` Werner Fleck
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://lists.galene.org/postorius/lists/galene.lists.galene.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87r0vz4eoq.wl-jch@irif.fr \
--to=jch@irif.fr \
--cc=dianne@skoll.ca \
--cc=fabrice@rouillier.fr \
--cc=galene@lists.galene.org \
--subject='[Galene] Re: Galene in Docker [was: ANNOUNCE: galene-0.6.2]' \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox