This repository has been archived by the owner on May 27, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 47
/
gortcd.yml
88 lines (80 loc) · 2.29 KB
/
gortcd.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
---
# The only valid version is currently 1, but there are no backward
# compatibility until gortcd reached v1.0.0. After that, config file
# will be versioned.
version: "1"
server:
# log config, see https://github.com/uber-go/zap
log:
level: "info"
disableCaller: true
disableStacktrace: true
# use REUSEPORT sockets if available, dramatically
# improves the performance on multi-threaded systems.
reuseport: true
# maximum count of concurrent workers that process request,
# use to limit memory consumption.
workers: 100
listen:
- 0.0.0.0:3478
# default realm
realm: gortc.io
# the SOFTWARE attribute value;
# not sending attribute if not set
software: gortcd
# verify the FINGERPRINT attribute
check_fingerprint: true
# options for debugging
debug:
# periodic pruning of allocations/permissions ("collect" calls)
collect: false
# export pprof metrics
# pprof: "localhost:3256"
# export prometheus metrics
# prometheus:
# addr: "localhost:3255"
# active: true # disable or enable metrics collection overhead
# Management API.
api:
addr: "localhost:3257"
auth:
# if true, no credentials are checked
public: false
nonce:
static: false
timeout: 600s
# Put here valid credentials.
# So, if you are passing to RTCPeerConnection something like this:
# {
# urls: "turn:turnserver.example.org",
# username: "webrtc",
# credential: "turnpassword"
# }
# Use the following:
# static:
# - username: webrtc
# password: turnpassword
filter:
# Rules for filtering peer addresses (the target address of relayed data).
# If address is filtered, the client will get 403 (Forbidden) error during
# STUN transaction.
peer:
# Default filtering action, if no matches in rules.
action: allow
# Put here your filtering rules.
# rules:
# - action: deny # can be "allow", "deny", or "pass" (no-op).
# net: 127.0.0.1/32 # should be CIDR
# E.g. to allow only two networks, use following:
# peer:
# action: deny
# rules:
# - net: 10.0.0.0/24
# action: allow
# - net: 10.5.0.0/24
# action: allow
# Attempts to relay data to address that is not in those networks
# will result in 403 error.
client:
# same as "peer" section, but for client addresses.
action: allow