[jitsi-users] (Sub)domain configuration for web, prosody, jicofo and videobridge


#1

I'm trying to get a collection of docker images that I can configure and
run as a set of containers for a quick and simple deployment of Jitsi meet
for people in the future. I am aware of the issues around ports with
running the videobridge in a container but will deal with that later. First
I am just trying to get the signalling working.

I am not so familiar with XMPP so links to reference material explaining
how non-trivial aspects affecting this configuration would be very welcome.

So, imagine that you have a set of independent servers on the same LAN as
in the diagram here:
https://github.com/jitsi/jitsi-meet/blob/master/doc/manual-install.md#network-description

If each server is running on a separate host, named after the server, then
we could have a set of servers named: nginx, prosody, jicofo and
videobridge.

The documentation continues to discuss a domain and set of subdomains but
it is not clear which components use them and from where they need to be
resolvable. The (sub)domains I see are:

jitsi.example.com
conference.jitsi.example.com
auth.jitsi.example.com
focus.jitsi.example.com
jitsi-videobridge.jitsi.example.com

It would seem that the main domain (jitsi.example.com) should resolve to
nginx. focus.jitsi.example.com seems to be something to do with jicofo.
jitsi-videobridge.jitsi.example.com should resolve to videobridge. That
leaves conference and auth which I think seem to be something to do with
prosody, as those subdomains are configured there.

Is it possible to not use subdomains, but instead use a set of LAN
hostnames such as having hosts named nginx, prosody, jicofo and
videobridge? Would that then allow doing a mapping of the domains and
subdomains in the documentation to hostnames as follows:

jitsi.example.com -> nginx
conference.jitsi.example.com -> prosody
auth.jitsi.example.com -> prosody
focus.jitsi.example.com -> jicofo
jitsi-videobridge.jitsi.example.com -> videobridge

Or are there requirements in XMPP that some addresses must be on subdomains?

Which domains and subdomains necessarily need to have public DNS records to
be resolvable by clients? Or more precisely, from where do each of the
domains and subdomains need to be resolvable?

Which ports need to be exposed to the world such that jitsi meet clients
can interact with them? It looks like only :443 on the web server and :4443
on the videobridge, plus UDP/TCP ports for media transport for videobridge.

Kind regards,
Rob


#2

Hi,

I'm trying to get a collection of docker images that I can configure and run
as a set of containers for a quick and simple deployment of Jitsi meet for
people in the future. I am aware of the issues around ports with running the
videobridge in a container but will deal with that later. First I am just
trying to get the signalling working.

I am not so familiar with XMPP so links to reference material explaining how
non-trivial aspects affecting this configuration would be very welcome.

So, imagine that you have a set of independent servers on the same LAN as in
the diagram here:
https://github.com/jitsi/jitsi-meet/blob/master/doc/manual-install.md#network-description

If each server is running on a separate host, named after the server, then
we could have a set of servers named: nginx, prosody, jicofo and
videobridge.

The documentation continues to discuss a domain and set of subdomains but it
is not clear which components use them and from where they need to be
resolvable. The (sub)domains I see are:

jitsi.example.com

This domain is the only one that needs to be DNS resolvable.

conference.jitsi.example.com
auth.jitsi.example.com
focus.jitsi.example.com
jitsi-videobridge.jitsi.example.com

All these addresses are just components addresses inside prosody and
are used by jitsi-meet, jicofo or jvb and don't need to have a DNS
entry. All components (jicofo and jvb) has a parameter like host which
should have the ip address of the server to connect.

It would seem that the main domain (jitsi.example.com) should resolve to
nginx. focus.jitsi.example.com seems to be something to do with jicofo.
jitsi-videobridge.jitsi.example.com should resolve to videobridge. That
leaves conference and auth which I think seem to be something to do with
prosody, as those subdomains are configured there.

Is it possible to not use subdomains, but instead use a set of LAN hostnames
such as having hosts named nginx, prosody, jicofo and videobridge? Would
that then allow doing a mapping of the domains and subdomains in the
documentation to hostnames as follows:

jitsi.example.com -> nginx
conference.jitsi.example.com -> prosody
auth.jitsi.example.com -> prosody
focus.jitsi.example.com -> jicofo
jitsi-videobridge.jitsi.example.com -> videobridge

Or are there requirements in XMPP that some addresses must be on subdomains?

Which domains and subdomains necessarily need to have public DNS records to
be resolvable by clients? Or more precisely, from where do each of the
domains and subdomains need to be resolvable?

Which ports need to be exposed to the world such that jitsi meet clients can
interact with them? It looks like only :443 on the web server and :4443 on
the videobridge, plus UDP/TCP ports for media transport for videobridge.

You need to forward port 443 to nginx and if jvb has its own public
address you need to make sure you forward traffic on TCP 443 and UDP
10000 to jvb.

Regards
damencho

ยทยทยท

On Tue, Jun 20, 2017 at 7:58 AM, Rob <robert.swain@gmail.com> wrote:

Kind regards,
Rob

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users