Hello, my use case is such. I have a Jitsi server setup on the internal network that works well. The request has come in to add participants that are outside, beyond the firewall. Catch is that they do not want to have any port forwarding or network changes that would allow connections from the outside to that box. If I set up an external Turn service, that should take care of the media? But the XMPP signaling needs to be externally handled as well? Is there a way for that to happen? Sorry for questions, but I am new to all of this.
In order to use the jvb that is inside the network you need the turn server to access jvb.
Do you mean https traffic?
Here is a simple diagram of the network connections of the system: https://github.com/jitsi/jitsi-meet/blob/master/doc/manual-install.md#network-description
The diagram is missing the udp 10000 port which is the same as jvb port 4443. So in order to work you need https traffic to the webserver and clients from outside to be able to access port 10000 udp.
If you want to add externally a turn server that server will need again to be able to access port 10000 udp…
Thank you Sir. Yes, https. Between the Nginx server and Jitsi Meet / Prosodoy, what port listens on Meet and Prosody? tcp 5280?