Hello Ed, 1) I believe you need TURN server, please search https://openmeetings.markmail.org 2.1) I usually using latest software, KMS 6.13 works as expected on our demo-server 2.2) I guess tomcat3 is init.d script from Alvaro, I have no idea why it named so, OM uses Tomcat9 (with servlet3 ... :)) ) And you already can have certbot managed certificates to have verified HTTPS 3) front-end proxy usually helps with limited ports and on previous versions helped with https with version 5 it might be used for https and maybe can help with load balancing in cluster mode (i'll check clustering and will report back)
4) sure :) can be done with both Apache and OM stand-alone :) On Thu, 19 Mar 2020 at 20:57, <i...@bureau-de-poste.net> wrote: > > Hello, > > I'm a debian server admin with almost no experience with JAVA (I do run solr > 5 on jetty9, so have some idea about CATALINA and .jar files, etc). > > I have installed OM 5.0.0 M3 on Ubuntu 18 with version 6.10 of the > kurento-media-server; This is on a server running apache 2.4.x (latest) etc. > [With ISPConfig3 on port 8080 - which includes Let's Encrypt certbot ssl > certificates with domains installed through ISPConfig3 - for what that's > worth]! > > I have a few general questions that I can't seem to find anwsers to anywhere, > and a specific problem which I'll start with: > > 1) I have this working fine for text chat and interactive whiteboard, but; > although I can see myself and hear myself when logged-in - and other users > can do the same, we can't see eath other nor can we hear each other. I have > studied the only manual I could find the old 2.0 OM manual - and that gives > me an idea that I can administer and use the software. So I guess that it is > the browser (all of them) that isn't allowing shared audio and video because > of self-signed ssl certificates. Is this correct? If so, will OM accpet LE > (Let's Encrypt - dehydrated) certs? > > 2) Can I (and should I) update: > > Kurento to 6.13 ? > > tomcat3 - which I assume means the java servlet version 3 which runs tomcat7 > to a servlet version of 4 which runs tomcat9 - and which I believe contains > built-in sni or something that might help to secure ssl with the browsers? > > 3) I am trying to test this with apache2 stopped - does OM 5 with KMS run > better served with just tomcat or will it serve more users, etc. faster with > apache2 on top? I have seen some info on proxying with apache2.4 but it > isn't clear if that is the way to go, if apache2 isn't really needed on the > server. - any advice? > > 4) Lastly does anyone have it setup with LE (Let's Encrypt) in a working > production environment so the major browsers don't throw insecure errors. > > > Thanks for any help / advice - I need to get this up and running with shared > audio and video asap for school to work from home with coronavirus ... > > Thanks Ed -- WBR Maxim aka solomax
