Skip to content

Latest commit

 

History

History
117 lines (69 loc) · 5 KB

README.md

File metadata and controls

117 lines (69 loc) · 5 KB

sturn

STUN/TURN server for WebRTC

Secrecy of Correspondence

The WebRTC peer-to-peer communication happens between the user's browser and the node where the web session is started. If the node is on a public host with an external IP, the communication is established without problems. If the node is instead behind a NAT, a STUN/TURN server is necessary for negotiating NAT traversal when establishing peer-to-peer WebRTC communication.

When a STUN/TURN server is used, usually STUN is attempted firstly. Depending on your own needs, it's also possible to use either a STUN server or a TURN server only. The main difference between these two solutions is that media will travel directly between both end points if STUN is used, whereas media will be proxied through the server if TURN is utilized. Note that, depending on network topology (i.e. combinations of NAT types, firewalls and network configurations) STUN may not work. Success rate is about 80%, but in case of failure of connectivity with STUN it's necessary to have a TURN server as fallback or it will be not possible to run NoMachine web sessions with WebRTC enabled.

  1. If the system firewall is blocking all the outbound and inbound ports, the WebRTC connection cannot be established. A STUN/TURN server is necessary also in this case.

  2. If the system firewall is blocking only inbound ports, the connection is possible only if the user's device is not behind a NAT and has a public IP.

  3. If the user's device is behind a NAT instead, connection will not be made. Also in this case setting-up a STUN/TURN server will help.

  4. If the system firewall is blocking only outbound ports, WebRTC connection will be possible given that the node is on a machine with a public IP not behind a NAT. The NAT router will not block inbound connections and the user's device will be able to make connections with the server without problems.

Public Alternatives

An alternative to set-up your own STUN/TURN server is to use any of the public NAT Traversal services available on the internet, for example this is a list of public STUN/TURN servers:

stun1.l.google.com:19302
stun2.l.google.com:19302
stun3.l.google.com:19302
stun4.l.google.com:19302
stun.stunprotocol.org:3478

STUN (Session Traversal Utilities for NAT)

TURN (Traversal Using Relays around NAT)

Platform

Network Topology

SFU (Selective Forwarding Unit) - https://webrtcglossary.com/sfu/

Testing

chrome://webrtc-internals

Servers

STUND

stun-js

stun **

xirsys Configuration

Signalmaster server https://github.com/andyet/signalmaster See xirsys.json for more details

https://github.com/andyet/SimpleWebRTC/issues/134#issuecomment-260781148

@billyshena I can't speak to how xirsys will show you connections, but you should be able to use chrome://webrtc-internals to determine if you're able to gather candidates. Also note that because this is a mesh lib, you won't create peer connections with candidates until you have at least two people.

Media encodings by browser

http://stackoverflow.com/questions/21921790/best-approach-to-real-time-http-streaming-to-html5-video-client

WebRTC

What is WebRTC http://blog.salemove.com/webrtc-vs-flash-not-much-of-a-competition/

Architecture https://www.w3.org/TR/media-source/ https://www.w3.org/TR/webrtc/ https://developer.mozilla.org/en-US/docs/Web/API/MediaSource https://developers.google.com/web/updates/2011/11/Stream-video-using-the-MediaSource-API?hl=en http://html5-demos.appspot.com/static/media-source.html

SPECIFICATIONS

RTC SDP - https://tools.ietf.org/html/draft-nandakumar-rtcweb-sdp-08