privatevoid.net/depot
1
1
Fork 0
Code Issues 23 Pull requests 2 Projects 3 Releases Packages Wiki Activity Actions

services/meet: use proper NAT address configuration

Browse source
This commit is contained in:
Max Headroom 2022-03-18 19:24:14 +01:00
parent 045517c88b
commit 4d1df18293
1 changed files with 7 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
hosts/prophet/services/meet/default.nix
View file

@ -15,7 +15,13 @@ in
prosody.enable = true; prosody.enable = true;
config.p2p.enabled = false; config.p2p.enabled = false;
}; };
services.jitsi-videobridge.openFirewall = true; services.jitsi-videobridge = {
openFirewall = true;
nat = lib.optionalAttrs isNAT {
localAddress = interfaces.primary.addr;
publicAddress = interfaces.primary.addrPublic;
};
};
services.nginx.virtualHosts."meet.${tools.meta.domain}" = { services.nginx.virtualHosts."meet.${tools.meta.domain}" = {
enableACME = true; enableACME = true;
forceSSL = true; forceSSL = true;
@ -30,11 +36,4 @@ in
}; };
}); });
boot.kernel.sysctl."net.core.rmem_max" = lib.mkForce 10485760; boot.kernel.sysctl."net.core.rmem_max" = lib.mkForce 10485760;
environment.etc."jitsi/videobridge/sip-communicator.properties" = lib.optionalAttrs isNAT {
text = ''
org.ice4j.ice.harvest.NAT_HARVESTER_LOCAL_ADDRESS=${interfaces.primary.addr}
org.ice4j.ice.harvest.NAT_HARVESTER_PUBLIC_ADDRESS=${interfaces.primary.addrPublic}
'';
};
} }