<HTML>
<HEAD>
<TITLE>Re: [Freeswitch-users] Anyone running FS 1.6 + Video in Google Cloud (or AWS)?</TITLE>
</HEAD>
<BODY>
<FONT FACE="Monaco, Courier New"><SPAN STYLE='font-size:11pt'>Keep in mind that you might see the UDP coming from any available port not just what you have defined in FreeSWITCH... The setting in FreeSWITCH (see switch.conf.xml) only addresses the local UDP ports freeswitch will use for its end of the call.<BR>
<BR>
If you are trying to firewall this down to both local and remote ports you firewall rules are just too restrictive<BR>
<BR>
<BR>
On 6/4/15, 10:59 AM, "Victor Medina" <<a href="victor.medina@cibersys.com">victor.medina@cibersys.com</a>> wrote:<BR>
<BR>
</SPAN></FONT><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Courier New">Regarding point #2<BR>
<BR>
2. Documentation on FreeSWITCH network configuration says to open UDP ports 16384-32768. But, I am seeing UDP ports up into the 60K range, so either enable the port-limit parameters or extend the UDP range on the firewall.<BR>
<BR>
<BR>
Would this be a good advice? In general? explicitly telling fs to use a defined range of ports?<BR>
</FONT><FONT FACE="Monaco, Courier New"><BR>
2015-06-03 19:26 GMT-04:30 Anthony Minessale <<a href="anthony.minessale@gmail.com">anthony.minessale@gmail.com</a>>:<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New">Also make sure you update every single day and are on master. The branch is dead now.<BR>
<BR>
<BR>
On Wednesday, June 3, 2015, Jack <<a href="jack@livecall.com">jack@livecall.com</a>> wrote:<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
Craig, <BR>
changing the ext-rtp-ip to my external IP was my last hurdle to make it work. <BR>
<BR>
<BR>
make sure you have <BR>
<param name="tls-cert-dir" value="$${internal_tls_dir}"/><BR>
uncommitted in your internal.xml and have your certs in the directory. <BR>
<BR>
make sure you are loading these mods modules.conf.xml<BR>
<load module="mod_rtc"/><BR>
<load module="mod_verto"/><BR>
<load module="mod_opus"/><BR>
<BR>
good luck,<BR>
Jack<BR>
<BR>
<BR>
On 6/3/2015 9:18 AM, Craig Stevenson wrote:<BR>
<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
I think there may be additional advise that is not documented on the FS 1.6 + Video install pages... <BR>
<BR>
<BR>
<BR>
Please correct me if I am missing something here, but the following edits are needed:<BR>
<BR>
<BR>
<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
1. Set ext-rtp-up parameter (IPv4 profile) in .../conf/autoload_configs/verto.conv.xml. Otherwise, Verto will not initiate a connection stun:stun.freeswitch.org <<a href="http://stun.freeswitch.org">http://stun.freeswitch.org</a>> and the FreeSWITCH instance will use private IP addresses instead of public IP address in the offered SDP (WebRTC client can't return packets to a private network).<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
Replace: <!-- <param name="ext-rtp-ip" value=""/> --><BR>
<BR>
</FONT></SPAN></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
With: <param name="ext-rtp-ip" value="$${external_rtp_ip}"/><BR>
<BR>
</FONT></SPAN></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
<BR>
<BR>
<BR>
</FONT></SPAN></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
<BR>
2. Documentation on FreeSWITCH network configuration says to open UDP ports 16384-32768. But, I am seeing UDP ports up into the 60K range, so either enable the port-limit parameters or extend the UDP range on the firewall.<BR>
<BR>
<BR>
<BR>
<BR>
</FONT></SPAN></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
<BR>
<BR>
<BR>
With these changes, FreeSWITCH is now using STUN to learn its public IP address and the firewall is no longer blocking return UDP packets from the WebRTC client.<BR>
<BR>
<BR>
<BR>
<BR>
-- Craig<BR>
<BR>
<BR>
<BR>
<BR>
p.s., There are still a few more "secret codes" I need to find to make the demo properly work; I'd welcome any additional hints from others who have made it all the way down this path.<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
On Mon, Jun 1, 2015 at 7:36 AM, Anthony Minessale <<a href="anthony.minessale@gmail.com">anthony.minessale@gmail.com</a>> wrote:<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New">All virtual usage of FS is at your own risk. <BR>
The only real advice is you MUST use dedicated instances and there still is no guarentee.<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
On Sunday, May 31, 2015, Craig Stevenson <<a href="craig@stevenson.com">craig@stevenson.com</a>> wrote:<BR>
<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
Has anyone brought up FS 1.6 + video on a Google Cloud instance? Any tips or tricks that I need to know? <BR>
<BR>
<BR>
<BR>
Alternatively, what about instances on the AWS EC2 cloud?<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
<BR>
</FONT></SPAN></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"> <BR>
<BR>
<BR>
<BR>
<BR>
<BR>
</FONT></SPAN></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Monaco, Courier New"><BR>
-- <BR>
Ken<BR>
<FONT COLOR="#0000FF"><U><a href="http://www.FreeSWITCH.org">http://www.FreeSWITCH.org</a><BR>
<a href="http://www.ClueCon.com">http://www.ClueCon.com</a><BR>
<a href="http://www.OSTAG.org">http://www.OSTAG.org</a><BR>
</U></FONT>irc.freenode.net #freeswitch<BR>
Twitter: @FreeSWITCH<BR>
<BR>
</FONT></SPAN>
</BODY>
</HTML>