Jitsi with coturn on port 443 and apache webserver

Here is the example for using a cotrun server with nginx on the same server on port 443:
https://jitsi.github.io/handbook/docs/devops-guide/turn/

Now I want to know, if you can also use this with apache webserver and what to add to the apache config so you can use 443 port for apache and coturn on the same server. Is there a configuartion example too for apache?

I’ve found this with similar topic: https://stackoverflow.com/questions/68021101/apache-version-of-ngx-stream-ssl-preread-module

Perhaps there is a chance.

I don’t think so. It seems to be working after TLS handshaking.

Could this Nginx Proxy Manager eventually work? https://nginxproxymanager.com/ If yes, which files in jitsi have to be adapted?

Nope but if putting Nginx in front of Apache is not a problem for you (as Nginx Proxy Manager does) then you may install Nginx and may follow the method described in the handbook.

I also tried the method described in the handbook, but I can’t get a valid test from https://webrtc.github.io/samples/src/content/peerconnection/trickle-ice/ , so there is no srflx or relay to see. I uninstalled apache2, installed nginx and apt install jitsi-meet again and I have used a second domain for the turnserver turn.mydomain.org, I also created certificates for this, in turnserver.conf I changed realm=turn.mydomain.org, in prosody .lua file I changed
{ type = “stun”, host = “turn.mydomain.org”, port = “443”, transport = “tcp” }
{ type = “turn”, host = “turn.mydomain.org”, port = “443”, transport = “udp” }
{ type = “turns”, host = “turn.mydomain.org”, port = “443”, transport = “tcp” }
So is there also something to change for other files?
Or perhaps I should do a complete fresh installation with nginx (instead of uninstalling apache and post installing nginx on a virtual machine)?

coturn will try to access JVB through the external IP. Therefore your firewall/NAT should handle incoming UDP/10000 requests from the internal network (Jitsi server) and should redirect them to Jitsi server back.

You may install a Jitsi server using this installer and compare the config files with your setup.

With a fresh installation with nginx the test now gives a successful “relay” under the address turns:turn.mydomain.org:443 + username + password: https://webrtc.github.io/samples/src/content/peerconnection/trickle-ice/
Before I used turn:turn.mydomain.org:443 + username + password and here I didn’t get a “relay”. I will also check your script now and compare the configfiles. Thanks.

1 Like