重新按照规范，配置一次apprtc

zangcf

1，所有需要的东西，都现下载
2，每次尽量测试

zangcf

参考https://github.com/webrtc/apprtc

nstall grunt by first installing npm. npm is distributed as part of nodejs.

sudo apt-get install nodejs
sudo npm install -g npm-->这一步时间非常长，可能和nodejs的网络有关系

On Ubuntu 14.04 the default packages installs /usr/bin/nodejs but the /usr/bin/node executable is required for grunt. This is installed on some Ubuntu package sets; if it is missing, you can add this by installing the nodejs-legacy package,

sudo apt-get install nodejs-legacy

It is easiest to install a shared version of grunt-cli from npm using the -g flag. This will allow you access the gruntcommand from /usr/local/bin. More information can be found on gruntjs Getting Started.

sudo npm -g install grunt-cli
全部完成之后，做一次磁盘快照

zangcf

1，安装git

1. apt-get install git-core

复制代码

2，同步代码

1. git clone https://github.com/webrtc/apprtc.git apprtc_root

复制代码

3, 进入apprtc_root目录，安装依赖库

1. npm install

复制代码

等待同步完成之后，进行一次快照

上面的方法一直是失败的，因此，我们需要一台翻墙的机器，同步完代码之后，打包上传到云端

zangcf

1，首先，准备VPN，保证google可以顺利上2，下载代码

1. git clone https://github.com/webrtc/apprtc.git apprtc_root

复制代码

3，安装需求包

1. npm install

复制代码

4, 编译代码

1. grunt build

复制代码

5, 打包上传到服务起，然后执行34步动作
服务器段执行环境缺少java执行环境，安装openjdk
sudo apt-get install openjdk-7-jdk

建立快照

zangcf

google_appengine的开发环境准备
下载/media/ultranix/windows/windowsxpsharedata/swap/91xp/google_appengine_1.9.35.zip，push到服务器
解压缩

运行：

打开火狐浏览器，输入http://120.76.203.222:8080/可以链接但是没有内容但是windows下面的火狐是ok的

使用chrome浏览器可以看到登录界面写一个房间服务器的批处理：
export PATH=$PATH:$HOME/google_appengineexport APPRTC_APP=$HOME/apprtc_root/out/app_engine/export HOST="--host=0.0.0.0"export ICE_SERVER_API_KEY="AIzaSyAJdh2HkajseEIltlZ3SIXO02Tze9sO3NY"dev_appserver.py $HOST $APPRTC_APP

zangcf

准备ssl的Key和crt文件

1. root@iZ949sqo4m3Z:~/singalserver# ls
   
2. signalmaster-master  signalmaster-master.zip  test
   
3. root@iZ949sqo4m3Z:~/singalserver# cd signalmaster-master/
   
4. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master# ls
   
5. config      LICENSE       package.json  README.md  server.js   test.js
   
6. Dockerfile  node_modules  Procfile      scripts    sockets.js
   
7. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master# cd ..
   
8. root@iZ949sqo4m3Z:~/singalserver# ls
   
9. signalmaster-master  signalmaster-master.zip  test
   
10. root@iZ949sqo4m3Z:~/singalserver# cd signalmaster-master/
    
11. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master# ls
    
12. config      LICENSE       package.json  README.md  server.js   test.js
    
13. Dockerfile  node_modules  Procfile      scripts    sockets.js
    
14. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master# ./scripts/generate-ssl-certs.sh
    
15. Generating self-signed certificates...
    
16. Generating RSA private key, 1024 bit long modulus
    
17. ..........++++++
    
18. ..........++++++
    
19. e is 65537 (0x10001)
    
20. You are about to be asked to enter information that will be incorporated
    
21. into your certificate request.
    
22. What you are about to enter is what is called a Distinguished Name or a DN.
    
23. There are quite a few fields but you can leave some blank
    
24. For some fields there will be a default value,
    
25. If you enter '.', the field will be left blank.
    
26. -----
    
27. Country Name (2 letter code) [AU]:CN
    
28. State or Province Name (full name) [Some-State]:GD
    
29. Locality Name (eg, city) []:SZ
    
30. Organization Name (eg, company) [Internet Widgits Pty Ltd]:91xuepai
    
31. Organizational Unit Name (eg, section) []:91xuepai
    
32. Common Name (e.g. server FQDN or YOUR name) []:91xuepai
    
33. Email Address []:710833814@qq.com
    
34. 
    
35. Please enter the following 'extra' attributes
    
36. to be sent with your certificate request
    
37. A challenge password []:123456
    
38. An optional company name []:91xuepai
    
39. Signature ok
    
40. subject=/C=CN/ST=GD/L=SZ/O=91xuepai/OU=91xuepai/CN=91xuepai/emailAddress=710833814@qq.com
    
41. Getting Private key
    
42. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master#

复制代码

第二步，安装nginx

1. apt-get install nginx

复制代码

第三步，配置反向代理站点

1. #/etc/nginx/sites-enabled/apprtc.91xuepai.com
   
2. upstream roomserver {
   
3.         server localhost:8080;
   
4. }
   
5. 
   
6. 
   
7. server {
   
8.         listen 80 ;
   
9.         server_name 91xuepai.com;
   
10.         return  301 https://$server_name$request_uri;
    
11. }
    
12. 
    
13. server {
    
14.         listen 443 ;
    
15.         ssl on;
    
16.         # 域名为apprtc.diveinedu.com的SSL证书文件
    
17.         ssl_certificate      /etc/nginx/apprtc.91xuepai.com.crt;
    
18.         ssl_certificate_key  /etc/nginx/apprtc.91xuepai.com.key;
    
19. 
    
20.         server_name apprtc.91xuepai.com;
    
21.         access_log  /var/log/nginx/apprtc.91xuepai.com.log;
    
22.         location / {
    
23.                 proxy_pass http://roomserver$request_uri;
    
24.                 proxy_set_header Host $host;
    
25.         }
    
26. 
    
27. }
    

复制代码

测试，反向代理失败了。为什么？

zangcf

恢复快照
使用我下载完全的nginx.tar.gz包，push到服务器上面
第一步，compile and intall pcre

1. cd pcre-8.32/
   
2. ./configure --prefix=/usr/local/pcre
   
3. make
   
4. make install

复制代码

第二步，配置编译nginx
首先，打开文件/usr/bin/pod2man
注释掉第71行
接着，设定配置选项

1. ./configure  --with-pcre=../pcre-8.32 --with-http_ssl_module --with-zlib=../zlib/1.2.3  --prefix=/usr/local/nginx --with-http_stub_status_module --with-cc-opt='-O3' --with-openssl=../openssl-1.0.1f

复制代码

修改C语言编译规则，修改为

1. CFLAGS =  -pipe  -O -W -Wall -Wpointer-arith -Wno-unused-parameter -Wunused-func
   
2. tion -Wunused-variable -Wunused-value -g -O3

复制代码

编译安装

1. make
   
2. make install

复制代码

第三步，生成sll的key和crt文件
利用simplewebrtc的信令服务的源码singlemaster去生成该文件
把信令服务器的源码不是到服务器上，或者下载
生成过程：

1. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master# ./scripts/generate-ssl-certs.sh
   
2. Generating self-signed certificates...
   
3. Generating RSA private key, 1024 bit long modulus
   
4. ............................++++++
   
5. .........................++++++
   
6. e is 65537 (0x10001)
   
7. You are about to be asked to enter information that will be incorporated
   
8. into your certificate request.
   
9. What you are about to enter is what is called a Distinguished Name or a DN.
   
10. There are quite a few fields but you can leave some blank
    
11. For some fields there will be a default value,
    
12. If you enter '.', the field will be left blank.
    
13. -----
    
14. Country Name (2 letter code) [AU]:CN
    
15. State or Province Name (full name) [Some-State]:GD
    
16. Locality Name (eg, city) []:SZ
    
17. Organization Name (eg, company) [Internet Widgits Pty Ltd]:91xuepai
    
18. Organizational Unit Name (eg, section) []:91xuepai
    
19. Common Name (e.g. server FQDN or YOUR name) []:91xuepai
    
20. Email Address []:710833814@qq.com
    
21. 
    
22. Please enter the following 'extra' attributes
    
23. to be sent with your certificate request
    
24. A challenge password []:123456
    
25. An optional company name []:91xuepai
    
26. Signature ok
    
27. subject=/C=CN/ST=GD/L=SZ/O=91xuepai/OU=91xuepai/CN=91xuepai/emailAddress=710833814@qq.com
    
28. Getting Private key
    
29. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master# ls ./config/sslcerts/
    
30. cert.pem  key.pem
    
31. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master#
    

复制代码

第四步，修改nginx的配置文件

1. add include /etc/nginx/sites-enabled/*; in http{}

复制代码

手工建立站点文件

1. mkdir -p /etc/nginx/sites-enabled

复制代码

建立/etc/nginx/sites-enabled/apprtc.91xuepai.com文件

1. #/etc/nginx/sites-enabled/apprtc.91xuepai.com
   
2. upstream roomserver {
   
3.         server localhost:8080;
   
4. }
   
5. 
   
6. 
   
7. server {
   
8.         listen 80 ;
   
9.         server_name apprtc.91xuepai.com;
   
10.         return  301 https://$server_name$request_uri;
    
11. }
    
12. 
    
13. server {
    
14.         listen 443 ;
    
15.         ssl on;
    
16.         # 域名为apprtc.diveinedu.com的SSL证书文件
    
17.         ssl_certificate      /etc/nginx/apprtc.91xuepai.com.crt;
    
18.         ssl_certificate_key  /etc/nginx/apprtc.91xuepai.com.key;
    
19. 
    
20.         server_name apprtc.91xuepai.com;
    
21.         access_log  /var/log/nginx/apprtc.91xuepai.com.log;
    
22.         location / {
    
23.                 proxy_pass http://roomserver$request_uri;
    
24.                 proxy_set_header Host $host;
    
25.         }
    
26. 
    
27. }

复制代码

拷贝sll key到/etc/nginx/下

1. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master/config/sslcerts# cp cert.pem /etc/nginx/apprtc.91xuepai.com.crt
   
2. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master/config/sslcerts# cp key.pem /etc/nginx/apprtc.91xuepai.com.key
   
3. root@iZ949sqo4m3Z:~/singalserver/signalmaster-master/config/sslcerts#
   

复制代码

nginx的配置文件如下：

1. 
   
2. #user  nobody;
   
3. worker_processes  1;
   
4. 
   
5. #error_log  logs/error.log;
   
6. #error_log  logs/error.log  notice;
   
7. #error_log  logs/error.log  info;
   
8. 
   
9. #pid        logs/nginx.pid;
   
10. 
    
11. 
    
12. events {
    
13.     worker_connections  1024;
    
14. }
    
15. 
    
16. 
    
17. http {
    
18.     include       mime.types;
    
19.     default_type  application/octet-stream;
    
20. 
    
21.     #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    
22.     #                  '$status $body_bytes_sent "$http_referer" '
    
23.     #                  '"$http_user_agent" "$http_x_forwarded_for"';
    
24. 
    
25.     #access_log  logs/access.log  main;
    
26. 
    
27.     sendfile        on;
    
28.     #tcp_nopush     on;
    
29. 
    
30.     #keepalive_timeout  0;
    
31.     keepalive_timeout  65;
    
32. 
    
33.     #gzip  on;
    
34. 
    
35.     server {
    
36.         listen       80;
    
37.         server_name  localhost;
    
38. 
    
39.         #charset koi8-r;
    
40. 
    
41.         #access_log  logs/host.access.log  main;
    
42. 
    
43.         location / {
    
44.             root   html;
    
45.             index  index.html index.htm;
    
46.         }
    
47. 
    
48.         #error_page  404              /404.html;
    
49. 
    
50.         # redirect server error pages to the static page /50x.html
    
51.         #
    
52.         error_page   500 502 503 504  /50x.html;
    
53.         location = /50x.html {
    
54.             root   html;
    
55.         }
    
56. 
    
57.         # proxy the PHP scripts to Apache listening on 127.0.0.1:80
    
58.         #
    
59.         #location ~ \.php$ {
    
60.         #    proxy_pass   http://127.0.0.1;
    
61.         #}
    
62. 
    
63.         # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
    
64.         #
    
65.         #location ~ \.php$ {
    
66.         #    root           html;
    
67.         #    fastcgi_pass   127.0.0.1:9000;
    
68.         #    fastcgi_index  index.php;
    
69.         #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
    
70.         #    include        fastcgi_params;
    
71.         #}
    
72. 
    
73.         # deny access to .htaccess files, if Apache's document root
    
74.         # concurs with nginx's one
    
75.         #
    
76.         #location ~ /\.ht {
    
77.         #    deny  all;
    
78.         #}
    
79.     }
    
80. 
    
81.     include /etc/nginx/sites-enabled/*;
    
82. 
    
83.     # another virtual host using mix of IP-, name-, and port-based configuration
    
84.     #
    
85.     #server {
    
86.     #    listen       8000;
    
87.     #    listen       somename:8080;
    
88.     #    server_name  somename  alias  another.alias;
    
89. 
    
90.     #    location / {
    
91.     #        root   html;
    
92.     #        index  index.html index.htm;
    
93.     #    }
    
94.     #}
    
95. 
    
96. 
    
97.     # HTTPS server
    
98.     #
    
99.     #server {
    
100.     #    listen       443;
     
101.     #    server_name  localhost;
     
102. 
     
103.     #    ssl                  on;
     
104.     #    ssl_certificate      cert.pem;
     
105.     #    ssl_certificate_key  cert.key;
     
106. 
     
107.     #    ssl_session_timeout  5m;
     
108. 
     
109.     #    ssl_protocols  SSLv2 SSLv3 TLSv1;
     
110.     #    ssl_ciphers  HIGH:!aNULL:!MD5;
     
111.     #    ssl_prefer_server_ciphers   on;
     
112. 
     
113.     #    location / {
     
114.     #        root   html;
     
115.     #        index  index.html index.htm;
     
116.     #    }
     
117.     #}
     
118. 
     
119. }
     

复制代码

重启nginx

OK
开始快照

zangcf

因为go环境和collider的下载编译都需要翻墙，因为现在本地同步好，然后上传到云服务器
第一步，准备go环境
解压go包

1. root@iZ949sqo4m3Z:~# tar xzvf go1.6.2.linux-amd64.tar.gz

复制代码

建立go工作目录

1. mkdir -p $HOME/gopath/src

复制代码

修改环境文件.profile

1. export GOROOT=$HOME/go
   
2. export GOPATH=$HOME/gopath
   
3. export PATH=$PATH:$GOROOT/bin:$GOPATH/bin
   

复制代码

第二步，准备信令服务器源码
解压collider_root文件，然后copy到gopath下面

1. root@iZ949sqo4m3Z:~# cp -r collider_root/src/* gopath/src/

复制代码

第三步修改源码：
编辑$GOPATH/src/collidermain/main.go,修改房间服务器为我们前面的房间服务器:

1. var roomSrv = flag.String("room-server", "https://120.76.203.222", "The origin of the room server")

复制代码

修改https的证书，位置在

1. root@iZ949sqo4m3Z:~# ls /etc/nginx/
   
2. apprtc.91xuepai.com.crt  cert.pem  sites-enabled
   
3. apprtc.91xuepai.com.key  key.pem
   

复制代码

修改文件$GOPATH/src/collider/collider.go

1.                 e = server.ListenAndServeTLS("/etc/nginx/cert.pem", "/etc/nginx/key.pem")
   

复制代码

第四步，安装信令服务器

1. root@iZ949sqo4m3Z:~# go get collidermain
   
2. root@iZ949sqo4m3Z:~# go install collidermain
   

复制代码

第五步，运行信令服务器

1. root@iZ949sqo4m3Z:~# $GOPATH/bin/collidermain -port=8089 -tls=true
   
2. 2016/08/11 10:32:17 Starting collider: tls = true, port = 8089, room-server=https://120.76.203.222
   
3. 2016/08/11 10:32:17 Run: http2: TLSConfig.CipherSuites index 4 contains an HTTP/2-approved cipher suite (0xc030), but it comes after unapproved cipher suites. With this configuration, clients that don't support previous, approved cipher suites may be given an unapproved one and reject the connection.
   

复制代码

如何测试信令服务器是否OK呢？创建快照

zangcf

下载版本：

1. wget http://turnserver.open-sys.org/downloads/v4.4.1.2/turnserver-4.4.1.2-debian-wheezy-ubuntu-mint-x86-64bits.tar.gz

复制代码

解压缩：

1. root@iZ949sqo4m3Z:~/turnserver# tar xzvf turnserver-4.4.1.2-debian-wheezy-ubuntu-mint-x86-64bits.tar.gz
   
2. INSTALL
   
3. coturn_4.4.1.2-1_amd64.deb
   
4. root@iZ949sqo4m3Z:~/turnserver# ls
   
5. coturn_4.4.1.2-1_amd64.deb
   
6. INSTALL
   
7. turnserver-4.4.1.2-debian-wheezy-ubuntu-mint-x86-64bits.tar.gz
   
8. root@iZ949sqo4m3Z:~/turnserver#

复制代码

安装

1. root@iZ949sqo4m3Z:~/turnserver# dpkg -i coturn_4.4.1.2-1_amd64.deb
   
2. Selecting previously unselected package coturn.
   
3. (Reading database ... 126517 files and directories currently installed.)
   
4. Preparing to unpack coturn_4.4.1.2-1_amd64.deb ...
   
5. Unpacking coturn (4.4.1.2-1) ...
   
6. dpkg: dependency problems prevent configuration of coturn:
   
7. coturn depends on libevent-core-2.0-5 (>= 2.0.10-stable); however:
   
8.   Package libevent-core-2.0-5 is not installed.
   
9. coturn depends on libevent-extra-2.0-5 (>= 2.0.10-stable); however:
   
10.   Package libevent-extra-2.0-5 is not installed.
    
11. coturn depends on libevent-openssl-2.0-5 (>= 2.0.10-stable); however:
    
12.   Package libevent-openssl-2.0-5 is not installed.
    
13. coturn depends on libevent-pthreads-2.0-5 (>= 2.0.10-stable); however:
    
14.   Package libevent-pthreads-2.0-5 is not installed.
    
15. coturn depends on libhiredis0.10 (>= 0.10.1); however:
    
16.   Package libhiredis0.10 is not installed.
    
17. coturn depends on libmysqlclient18 (>= 5.5.24+dfsg-1); however:
    
18.   Package libmysqlclient18 is not installed.
    
19. coturn depends on libpq5 (>= 8.4~); however:
    
20.   Package libpq5 is not installed.
    
21. 
    
22. dpkg: error processing package coturn (--install):
    
23. dependency problems - leaving unconfigured
    
24. Processing triggers for man-db (2.6.7.1-1ubuntu1) ...
    
25. Processing triggers for ureadahead (0.100.0-16) ...
    
26. ureadahead will be reprofiled on next reboot
    
27. Processing triggers for ufw (0.34~rc-0ubuntu2) ...
    
28. Errors were encountered while processing:
    
29. coturn
    
30. root@iZ949sqo4m3Z:~/turnserver# apt-get install -f
    
31. Reading package lists... Done
    
32. Building dependency tree      
    
33. Reading state information... Done
    
34. Correcting dependencies... Done
    
35. The following extra packages will be installed:
    
36.   libevent-core-2.0-5 libevent-extra-2.0-5 libevent-openssl-2.0-5
    
37.   libevent-pthreads-2.0-5 libhiredis0.10 libmysqlclient18 libpq5 mysql-common
    
38. The following NEW packages will be installed:
    
39.   libevent-core-2.0-5 libevent-extra-2.0-5 libevent-openssl-2.0-5
    
40.   libevent-pthreads-2.0-5 libhiredis0.10 libmysqlclient18 libpq5 mysql-common
    
41. 0 upgraded, 8 newly installed, 0 to remove and 77 not upgraded.
    
42. 1 not fully installed or removed.
    
43. Need to get 865 kB of archives.
    
44. After this operation, 4,484 kB of additional disk space will be used.
    
45. Do you want to continue? [Y/n] y
    
46. Get:1 http://mirrors.aliyun.com/ubuntu/ trusty-security/main libevent-core-2.0-5 amd64 2.0.21-stable-1ubuntu1.14.04.1 [78.3 kB]
    
47. Get:2 http://mirrors.aliyun.com/ubuntu/ trusty-security/main libevent-extra-2.0-5 amd64 2.0.21-stable-1ubuntu1.14.04.1 [57.8 kB]
    
48. Get:3 http://mirrors.aliyun.com/ubuntu/ trusty-security/main libevent-openssl-2.0-5 amd64 2.0.21-stable-1ubuntu1.14.04.1 [12.6 kB]
    
49. Get:4 http://mirrors.aliyun.com/ubuntu/ trusty-security/main libevent-pthreads-2.0-5 amd64 2.0.21-stable-1ubuntu1.14.04.1 [6,126 B]
    
50. Get:5 http://mirrors.aliyun.com/ubuntu/ trusty/universe libhiredis0.10 amd64 0.11.0-3 [23.5 kB]
    
51. Get:6 http://mirrors.aliyun.com/ubuntu/ trusty-security/main mysql-common all 5.5.50-0ubuntu0.14.04.1 [12.9 kB]
    
52. Get:7 http://mirrors.aliyun.com/ubuntu/ trusty-security/main libmysqlclient18 amd64 5.5.50-0ubuntu0.14.04.1 [595 kB]
    
53. Get:8 http://mirrors.aliyun.com/ubuntu/ trusty-updates/main libpq5 amd64 9.3.13-0ubuntu0.14.04 [78.6 kB]
    
54. Fetched 865 kB in 0s (1,212 kB/s)
    
55. Selecting previously unselected package libevent-core-2.0-5:amd64.
    
56. (Reading database ... 126619 files and directories currently installed.)
    
57. Preparing to unpack .../libevent-core-2.0-5_2.0.21-stable-1ubuntu1.14.04.1_amd64.deb ...
    
58. Unpacking libevent-core-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
59. Selecting previously unselected package libevent-extra-2.0-5:amd64.
    
60. Preparing to unpack .../libevent-extra-2.0-5_2.0.21-stable-1ubuntu1.14.04.1_amd64.deb ...
    
61. Unpacking libevent-extra-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
62. Selecting previously unselected package libevent-openssl-2.0-5:amd64.
    
63. Preparing to unpack .../libevent-openssl-2.0-5_2.0.21-stable-1ubuntu1.14.04.1_amd64.deb ...
    
64. Unpacking libevent-openssl-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
65. Selecting previously unselected package libevent-pthreads-2.0-5:amd64.
    
66. Preparing to unpack .../libevent-pthreads-2.0-5_2.0.21-stable-1ubuntu1.14.04.1_amd64.deb ...
    
67. Unpacking libevent-pthreads-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
68. Selecting previously unselected package libhiredis0.10:amd64.
    
69. Preparing to unpack .../libhiredis0.10_0.11.0-3_amd64.deb ...
    
70. Unpacking libhiredis0.10:amd64 (0.11.0-3) ...
    
71. Selecting previously unselected package mysql-common.
    
72. Preparing to unpack .../mysql-common_5.5.50-0ubuntu0.14.04.1_all.deb ...
    
73. Unpacking mysql-common (5.5.50-0ubuntu0.14.04.1) ...
    
74. Selecting previously unselected package libmysqlclient18:amd64.
    
75. Preparing to unpack .../libmysqlclient18_5.5.50-0ubuntu0.14.04.1_amd64.deb ...
    
76. Unpacking libmysqlclient18:amd64 (5.5.50-0ubuntu0.14.04.1) ...
    
77. Selecting previously unselected package libpq5.
    
78. Preparing to unpack .../libpq5_9.3.13-0ubuntu0.14.04_amd64.deb ...
    
79. Unpacking libpq5 (9.3.13-0ubuntu0.14.04) ...
    
80. Setting up libevent-core-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
81. Setting up libevent-extra-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
82. Setting up libevent-openssl-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
83. Setting up libevent-pthreads-2.0-5:amd64 (2.0.21-stable-1ubuntu1.14.04.1) ...
    
84. Setting up libhiredis0.10:amd64 (0.11.0-3) ...
    
85. Setting up mysql-common (5.5.50-0ubuntu0.14.04.1) ...
    
86. Setting up libmysqlclient18:amd64 (5.5.50-0ubuntu0.14.04.1) ...
    
87. Setting up libpq5 (9.3.13-0ubuntu0.14.04) ...
    
88. Setting up coturn (4.4.1.2-1) ...
    
89. Adding group `turnserver' (GID 115) ...
    
90. Done.
    
91. Adding system user `turnserver' (UID 106) ...
    
92. Adding new user `turnserver' (UID 106) with group `turnserver' ...
    
93. Not creating home directory `/'.
    
94. * coturn disabled in /etc/default/coturn turnserver
    
95.    ...done.
    
96. * See /etc/default/coturn for instructions on enabling turnserver
    
97.    ...done.
    
98. Processing triggers for libc-bin (2.19-0ubuntu6.7) ...
    
99. Processing triggers for ureadahead (0.100.0-16) ...
    
100. Processing triggers for ufw (0.34~rc-0ubuntu2) ...
     
101. root@iZ949sqo4m3Z:~/turnserver#
     

复制代码

编辑配置文件,打开系统默认启动配置:

1. # Uncomment it if you want to have the turnserver running as
   
2. # an automatic system service daemon
   
3. #
   
4. TURNSERVER_ENABLED=1
   
5. 
   
6. "/etc/default/coturn" 6L, 125C written         

复制代码

把上面打开编辑的文件中的这一行TURNSERVER_ENABLED=1去掉注释,保存退出.
准备用户名，域名和密码
用户名：91xuepai
域名：91xuepai
密码：91xuepai

1. root@iZ949sqo4m3Z:~/turnserver# turnadmin -k -u 91xuepai -p 91xuepai -r 91xuepai
   
2. 0x696abf1163c64258bd58039c6c70fe00
   
3. root@iZ949sqo4m3Z:~/turnserver#
   

复制代码

修改/etc/turnserver.conf

1. listening-device=eth1
   
2. listening-port=3478
   
3. tls-listening-port=5349
   
4. listening-ip=120.76.203.222
   
5. relay-device=eth1
   
6. relay-ip=120.76.203.222
   
7. Verbose
   
8. fingerprint
   
9. lt-cred-mech
   
10. use-auth-secret
    
11. static-auth-secret=91xuepai
    

复制代码

1. 
   
2. user=91xuepai:91xuepai
   
3. user=91xuepai:0x696abf1163c64258bd58039c6c70fe00
   
4. realm=91xuepai.com
   
5. stale-nonce
   
6. cert=/etc/nginx/cert.pem
   
7. pkey=/etc/nginx/key.pem
   
8. no-loopback-peers
   
9. sha256
   
10. mobility
    
11. no-cli

复制代码

启动穿墙服务器

1. root@iZ949sqo4m3Z:~/turnserver# service coturn start
   
2. * Starting coturn  turnserver
   
3. 0: log file opened: /var/log/turn_24506_2016-08-11.log
   
4. 0:
   
5. RFC 3489/5389/5766/5780/6062/6156 STUN/TURN Server
   
6. Version Coturn-4.4.1.2 'Ardee West'
   
7. 0:
   
8. Max number of open files/sockets allowed for this process: 65535
   
9. 0:
   
10. Due to the open files/sockets limitation,
    
11. max supported number of TURN Sessions possible is: 32500 (approximately)
    
12. 0:
    
13. 
    
14. ==== Show him the instruments, Practical Frost: ====
    
15. 
    
16. 0: TLS supported
    
17. 0: DTLS supported
    
18. 0: AEAD supported
    
19. 0: SQLite supported, default database location is /var/lib/turn/turndb
    
20. 0: Redis supported
    
21. 0: PostgreSQL supported
    
22. 0: MySQL supported
    
23. 0: MongoDB is not supported
    
24. 0: OpenSSL compile-time version: OpenSSL 1.0.1e 11 Feb 2013
    
25. 0: Default Net Engine version: 2 (UDP thread per network endpoint)
    
26. 
    
27. =====================================================
    
28. 
    
29. 0: Listener address to use: 120.76.203.222
    
30. 0: Relay address to use: 120.76.203.222
    
31. 0: Domain name:
    
32. 0: Default realm: 91xuepai.com
    
33. 0: SSL23: Certificate file found: /etc/nginx/cert.pem
    
34. 0: SSL23: Private key file found: /etc/nginx/key.pem
    
35. 0: TLS1.0: Certificate file found: /etc/nginx/cert.pem
    
36. 0: TLS1.0: Private key file found: /etc/nginx/key.pem
    
37. 0: TLS1.1: Certificate file found: /etc/nginx/cert.pem
    
38. 0: TLS1.1: Private key file found: /etc/nginx/key.pem
    
39. 0: TLS1.2: Certificate file found: /etc/nginx/cert.pem
    
40. 0: TLS1.2: Private key file found: /etc/nginx/key.pem
    
41. 0: TLS cipher suite: DEFAULT
    
42. 0: DTLS: Certificate file found: /etc/nginx/cert.pem
    
43. 0: DTLS: Private key file found: /etc/nginx/key.pem
    
44. 0: DTLS cipher suite: DEFAULT
    
45.    ...done.
    
46. root@iZ949sqo4m3Z:~/turnserver#
    

复制代码

建立系统快照

zangcf

1，修改房间的ICE配置

1. ROOM_MEMCACHE_EXPIRATION_SEC = 60 * 60 * 24
   
2. MEMCACHE_RETRY_LIMIT = 100
   
3. 
   
4. LOOPBACK_CLIENT_ID = 'LOOPBACK_CLIENT_ID'
   
5. 
   
6. # TODO: Remove once clients support ICE_SERVER.
   
7. TURN_BASE_URL = 'https://120.76.203.222'
   
8. TURN_URL_TEMPLATE = '%s/turn.php?username=%s&key=%s'
   
9. CEOD_KEY = '91xuepai'
   
10. 
    
11. ICE_SERVER_BASE_URL = 'https://120.76.203.222'
    
12. ICE_SERVER_URL_TEMPLATE = '%s/apprtc/iceconfig.php?key=%s'
    
13. ICE_SERVER_API_KEY = os.environ.get('ICE_SERVER_API_KEY')
    

复制代码

2，重新build一次

1. root@iZ949sqo4m3Z:~/apprtc_root# grunt build
   

复制代码

3，修改房间服务的启动密码