I have users in one location who for network topology reasons do not have direct access to the jitsi (jvb server). so I would like the users to be able to hit some endpoint in a data centre near them which can then explicitly proxy the traffic to the central jitsi server.
My idea to accomplish this was to rewrite the ice candidate address in the offer sent by jitsi, e.g.:
a=candidate:1 1 udp 2130706431 10.67.1.1 12002 typ host generation 0
a=candidate:1 1 udp 2130706431 192.168.142.100 12002 typ host generation 0
10.67.1.1 is the real IP of the jitsi server. but is not accessible from user devices. my idea is that 192.168.142.100 would be accessible from users and would just be a dumb relay to relay the packets to the real jvb, or for the purposes of illustration, would behave something like:
socat UDP4-RECVFROM:12002,fork UDP4-SENDTO:localhost:12002
I’m going to try this - but it would be really helpful if you could let me know any reasons you can see that this wouldn’t work.
PS - I am discussing using socat as above only for the purposes of illustration. for a real solution I’d probably use iptables