Jitsi in DMZ behind a reverse-proxy with TLS termination


I’d like to run an on-premise Jitsi installation but with some restrictions :

  • in DMZ (read, behind a NAT)
  • with an haproxy working as a TLS termination endpoint

As haproxy will act as the TLS termination endpoint, how to disable completely TLS in all compenents (prosody, jifoco, jvb) ?


You can only disable the TLS between haproxy and nginx running on the signalling. Rest you cannot, no need to, or a lot of hassle… to disable.