From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: mail.toke.dk; spf=pass (mailfrom) smtp.mailfrom=irif.fr (client-ip=2001:660:3301:8000::1:2; helo=korolev.univ-paris7.fr; envelope-from=jch@irif.fr; receiver=) Authentication-Results: mail.toke.dk; dkim=pass (2048-bit key; unprotected) header.d=irif.fr header.i=@irif.fr header.a=rsa-sha256 header.s=dkim-irif header.b=carxIbv0 Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) by mail.toke.dk (Postfix) with ESMTPS id C57E8B02DA2 for ; Sat, 22 Mar 2025 19:29:13 +0100 (CET) Received: from potemkin.univ-paris7.fr (potemkin.univ-paris7.fr [IPv6:2001:660:3301:8000::1:1]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/82085) with ESMTP id 52MITDht004679 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Sat, 22 Mar 2025 19:29:13 +0100 Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by potemkin.univ-paris7.fr (8.14.4/8.14.4/relay2/82085) with ESMTP id 52MITCAj028438 for ; Sat, 22 Mar 2025 19:29:13 +0100 Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id E236C5C517 for ; Sat, 22 Mar 2025 19:29:12 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=irif.fr; h= content-type:content-type:mime-version:user-agent:subject :subject:from:from:message-id:date:date:received:received; s= dkim-irif; t=1742668151; x=1743532152; bh=Lqr5RSXFIbB+X67HRSGwWE NZME3NUQBzX6YxURfJXTc=; b=carxIbv0UAVdgEaFEA//b/CE3kgOv+/T27zmBh FTAAVnSfWQVWu5zxDzG1ii28zemgOPj+6y6BB3hEQ/sQXMzjWHHNOVMdkgAa28bH P4JzaeXoVrT6l6nIPwfTVEO5d6PdsPlYXLgGaUnwDRd4jmDbrBQFX6fIGUAMry6G hIUNIjRcsUo5ejsWniyjbq8EuoAcJEZCHraM+fsoQyc77kwLXME7OEDcZk4G6iye 6xZrfJlJRuZiigFy/gIuGEm/fbZ1LxQ2J5779ac/k8t5noVUEILy8JqBdCHsdlV6 KtzZD1knuVPFrnAgE1s2ZYDVbXckadzXac1gYE4PN8QJE9ug== X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id 9-qbdoSw_lKu for ; Sat, 22 Mar 2025 19:29:11 +0100 (CET) Received: from pirx.irif.fr (89-64-70-45.dynamic.chello.pl [89.64.70.45]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id BBCCB5C515 for ; Sat, 22 Mar 2025 19:29:11 +0100 (CET) Date: Sat, 22 Mar 2025 19:29:10 +0100 Message-ID: <87v7s0or61.wl-jch@irif.fr> From: Juliusz Chroboczek To: galene@lists.galene.org User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/30.1 Mule/6.0 MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue") Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]); Sat, 22 Mar 2025 19:29:13 +0100 (CET) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (potemkin.univ-paris7.fr [194.254.61.141]); Sat, 22 Mar 2025 19:29:13 +0100 (CET) X-Miltered: at korolev with ID 67DF0179.001 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)! X-Miltered: at potemkin with ID 67DF0178.001 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)! X-j-chkmail-Enveloppe: 67DF0179.001 from potemkin.univ-paris7.fr/potemkin.univ-paris7.fr/null/potemkin.univ-paris7.fr/ X-j-chkmail-Enveloppe: 67DF0178.001 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/ X-j-chkmail-Score: MSGID : 67DF0179.001 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000 X-j-chkmail-Score: MSGID : 67DF0178.001 on potemkin.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000 X-j-chkmail-Status: Ham X-j-chkmail-Status: Ham Message-ID-Hash: D7KPLA7TSWSNU3APKHZFEK3ASWQC757S X-Message-ID-Hash: D7KPLA7TSWSNU3APKHZFEK3ASWQC757S X-MailFrom: jch@irif.fr X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.10 Precedence: list Subject: [Galene] About UDP multiplexing List-Id: =?utf-8?q?Gal=C3=A8ne_videoconferencing_server_discussion_list?= Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Hi, By default, Galene will use random UDP ports for media traffic. If the high ports are inaccessible for some reason (say, because there is a firewall in the way), it will fall back to routing through the built-in TURN server. While this is the right approach, it makes Galene challenging to install for people who wish to put it behind a firewall. There is another approach, which is to put all the UDP traffic on a single port; this is called UDP multiplexing. I tried it a couple of years ago, and it did not work well, apparently Pion (our WebRTC library) had some issues with double-stack hosts when multiplexing. It appears to work now, and I've implemented it in the branch "udpmux". UDP muxing is very simple to use: just add the option "-udp 10000", where 10000 is the port that you wish to use for UDP traffic. There are some caveats: - there is a slight performance penalty, but it should be negligible; - if the server is renumbered (its IP address changes), you will need to restart Galene. The code is live on galene.org, and it seems to work fine. I've reimplemented it just today, so if you did test before, please test again. Note that UDP muxing, in its current state, does not solve the NAT problem: if your server is behind NAT, Galene will still fallback to TURN, even if the mux port is forwarded on the NAT. I'll see if I can implement something, but please don't hold your breath, I'm not really interested in working around NAT issues. -- Juliusz