From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: mail.toke.dk; spf=pass (mailfrom) smtp.mailfrom=webweaving.org (client-ip=148.251.234.232; helo=weser.webweaving.org; envelope-from=dirkx@webweaving.org; receiver=) Authentication-Results: mail.toke.dk; dkim=pass (1024-bit key; unprotected) header.d=webweaving.org header.i=@webweaving.org header.a=rsa-sha256 header.s=shared header.b=aki4gFQx Received: from weser.webweaving.org (weser.webweaving.org [148.251.234.232]) by mail.toke.dk (Postfix) with ESMTPS id B3350A54651 for ; Sun, 11 Feb 2024 15:42:15 +0100 (CET) Received: from smtpclient.apple (83-85-39-103.cable.dynamic.v4.ziggo.nl [83.85.39.103]) (authenticated bits=0) by weser.webweaving.org (8.17.1/8.17.1) with ESMTPSA id 41BEdiIn074751 (version=TLSv1.2 cipher=ECDHE-ECDSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Sun, 11 Feb 2024 15:39:44 +0100 (CET) (envelope-from dirkx@webweaving.org) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=webweaving.org; s=shared; t=1707662385; bh=dsLpRUU+jtICDXWonkMF6q7+9NV7hwPS5CptlW5tgT0=; h=From:Subject:Date:To; b=aki4gFQx3sgG+lKBKD71dWXrioQF1tKurmafdwFnfjDzk+XTJJ6IzBzCknYp+4WBE 9PKQaeLx+NBgMF0k8w8myKdwek1SCkr9ufpbDsT50f08X4DxapV0eCvfSdwPZXmQJw cvsZHrp3EJ15ewIkukU0vSgk3YvlgA5CY/pVzztE= X-Authentication-Warning: weser.webweaving.org: Host 83-85-39-103.cable.dynamic.v4.ziggo.nl [83.85.39.103] claimed to be smtpclient.apple From: Dirk-Willem van Gulik Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\)) Message-Id: Date: Sun, 11 Feb 2024 15:39:44 +0100 To: galene@lists.galene.org X-Mailer: Apple Mail (2.3774.300.61.1.2) X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.4 (weser.webweaving.org [148.251.234.232]); Sun, 11 Feb 2024 15:39:45 +0100 (CET) Message-ID-Hash: 72LGRUBOJADIMENPZ6UGYUBJU6NG7TBN X-Message-ID-Hash: 72LGRUBOJADIMENPZ6UGYUBJU6NG7TBN X-MailFrom: dirkx@webweaving.org X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.9 Precedence: list Subject: [Galene] udp-port range and subsequent "turn" use of ports outside that range List-Id: =?utf-8?q?Gal=C3=A8ne_videoconferencing_server_discussion_list?= Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: I've got a minor puzzle in a fairly simple setup; where galene is behind = a reverse proxy & in a freebsd jail (to co-exist with another = video/blackboard/sip servers). The web and web-socket proportion is fine; as is, I think TURN: ... 2024/02/11 13:44:29 Starting built-in TURN server on = 127.0.1.12:1194 ... 2024/02/11 13:44:29 Relay test successful in 6.018877ms, RTT = =3D 71.363=C2=B5s The latter is given a limited range with -turn :1194 -udp-range 18100-19100 which is let through by the firewall (as is 1194 of course), etc in both = directions.=20 But I am seeing errors: turn ERROR: 2024/02/11 14:26:36 Failed to handle datagram:=20 unable to handle ChannelData from 127.0.1.12:32895:=20 failed writing to socket: write udp4 = 127.0.1.12:24074->DESTINATION_IP:54924:=20 sendto: permission denied and note that the port numbers under control of Galene appear to be = outside the provided 18100-19100 range. Does the range also be specified somewhere else ? This is 'stock' galene = against the https://github.com/jech/galene/releases/tag/galene-0.8 tag. With kind regards, Dw. galene-0.8_1 Name : galene Version : 0.8_1 Installed on : Sun Feb 11 12:55:49 2024 UTC Origin : www/galene Architecture : FreeBSD:13:amd64 Prefix : /usr/local Categories : www net-im Licenses : MIT Maintainer : bapt@FreeBSD.org WWW : https://galene.org Comment : The Gal=C3=A8ne videoconference server Options : DOCS : on Annotations : FreeBSD_version: 1302001 build_timestamp: 2024-01-07T22:34:10+0000 built_by : poudriere-git-3.4.0 port_checkout_unclean: no port_git_hash : 756e18783 ports_top_checkout_unclean: no ports_top_git_hash: 756e18783 repo_type : binary repository : FreeBSD Flat size : 12.2MiB