Why does matrix docker not open ports needed for turn server?
-
Why does matrix docker not open ports needed for turn server? I read that docker containers handle all port opening needed for functioning.
iptables --numeric -L DOCKERI run this command and ports 3478, 5349, and UDP 50000:51000 needed for turn server to work when making video and audio calls in element are not open. When I open them in iptables and do iptables-save, it saves, but then on reboot, it is gone again. Making it very difficult for me to troubleshoot and get voice and video calls working.
-
N nebulon marked this topic as a question on
-
The turn server is actually running in the turn addon, not inside the synapse app instance. For the addon the ports should be opened already. But maybe I don't fully understand your setup here?
@nebulon ok I see the turn server running in services tab but how do I see what ports are opened for the turn server? As it is right now, video and phone calling has not worked for anyone using cloudron so i am trying to get it to work here. My setup is a basic matrix install that is functioning fine for messages but does not work for video and voice calls.
-
Since the turn server exposes a port range
50000-51000/udpit runs on the host interface directly. You should see the firewall settings withiptables -Land then for the turn server this section:ACCEPT tcp -- anywhere anywhere multiport dports 3478,5349 ACCEPT udp -- anywhere anywhere multiport dports 3478,5349 ACCEPT udp -- anywhere anywhere multiport dports 50000:51000 -
@nebulon ok I see the turn server running in services tab but how do I see what ports are opened for the turn server? As it is right now, video and phone calling has not worked for anyone using cloudron so i am trying to get it to work here. My setup is a basic matrix install that is functioning fine for messages but does not work for video and voice calls.
@danielreyes61 said in Why does matrix docker not open ports needed for turn server?:
video and phone calling has not worked for anyone using cloudron
I've not tried it for a while, but when video calling first came out I gave it a try and it worked fine with a 1 to 1 call (not tried a group, which I guess is where the turn server comes in)
-
@danielreyes61 said in Why does matrix docker not open ports needed for turn server?:
video and phone calling has not worked for anyone using cloudron
I've not tried it for a while, but when video calling first came out I gave it a try and it worked fine with a 1 to 1 call (not tried a group, which I guess is where the turn server comes in)
@jdaviescoates it works fine when both parties are on the same network.
-
@jdaviescoates it works fine when both parties are on the same network.
@danielreyes61 my 1 to 1 call didn't involve people on the same network, but I guess maybe it was in p2p mode like how Jitsi works p2p when 1 to 1 too
️ but I'm just guessing and it was a while ago. -
@danielreyes61 my 1 to 1 call didn't involve people on the same network, but I guess maybe it was in p2p mode like how Jitsi works p2p when 1 to 1 too
️ but I'm just guessing and it was a while ago.@jdaviescoates interesting. I wonder if it's working for others now? I feel like i've tried everything.
-
@jdaviescoates interesting. I wonder if it's working for others now? I feel like i've tried everything.
@danielreyes61 shall we see if it's still working for me? https://matrix.to/#/@josef:uniteddiversity.coop
-
@jdaviescoates interesting. I wonder if it's working for others now? I feel like i've tried everything.
@danielreyes61 it does if all the network plumbing to all the parties is working. You'd have to test both tcp and udp connectivity as those are separate audio and video channels.
It's also not always a Cloudron side issue, as clients have misconfigured routers too.
-
@danielreyes61 shall we see if it's still working for me? https://matrix.to/#/@josef:uniteddiversity.coop
@jdaviescoates sure, trying now!
-
@danielreyes61 shall we see if it's still working for me? https://matrix.to/#/@josef:uniteddiversity.coop
@jdaviescoates tried to join and send message, it says Messages failed to send, do i need to be federated or anything?
-
Since the turn server exposes a port range
50000-51000/udpit runs on the host interface directly. You should see the firewall settings withiptables -Land then for the turn server this section:ACCEPT tcp -- anywhere anywhere multiport dports 3478,5349 ACCEPT udp -- anywhere anywhere multiport dports 3478,5349 ACCEPT udp -- anywhere anywhere multiport dports 50000:51000@nebulon ok I see them now, thank you. It must be an issue with my host then. Oracle Cloud Free Tier.
-
@jdaviescoates tried to join and send message, it says Messages failed to send, do i need to be federated or anything?
@danielreyes61 said in Why does matrix docker not open ports needed for turn server?:
@jdaviescoates tried to join and send message, it says Messages failed to send, do i need to be federated or anything?
TBH I'm not sure, but I'm not seeing any requests to chat at my end
-
@danielreyes61 said in Why does matrix docker not open ports needed for turn server?:
@jdaviescoates tried to join and send message, it says Messages failed to send, do i need to be federated or anything?
TBH I'm not sure, but I'm not seeing any requests to chat at my end
@jdaviescoates ok no worries. thanks for trying!! I'm not too sure either. All good though. Pretty sure the issue is with my host. May try some other things locally to test to be sure. Thanks!
-
D danielreyes61 has marked this topic as solved on
-
@danielreyes61 shall we see if it's still working for me? https://matrix.to/#/@josef:uniteddiversity.coop
@jdaviescoates said in Why does matrix docker not open ports needed for turn server?:
@danielreyes61 shall we see if it's still working for me? https://matrix.to/#/@josef:uniteddiversity.coop
@danielreyes61 tried but I didn't see anything at my end. Perhaps anyone else reading this could give it a try (just to reassure me it is working at my end
) @robi ? -
@jdaviescoates said in Why does matrix docker not open ports needed for turn server?:
@danielreyes61 shall we see if it's still working for me? https://matrix.to/#/@josef:uniteddiversity.coop
@danielreyes61 tried but I didn't see anything at my end. Perhaps anyone else reading this could give it a try (just to reassure me it is working at my end
) @robi ?@jdaviescoates sent you a note and it went through
No fear.
-
@jdaviescoates sent you a note and it went through
No fear.
@robi thanks
-
@danielreyes61 maybe worth looking at the ICE handling on your browser side which potential routes it proposes. At least firefox has
about:webrtcto get more info.@nebulon what is ice handling?
