Fediversity/matrix/firewall/README.md

# Firewall

Several ports need to be opened in the firewall, this is a list of all ports
that are needed by the components we describe in this document.

Those for nginx are necessary for Synapse to work, the ones for coturn and
LiveKit only need to be opened if you run those servers.


| Port(s) / range | IP version | Protocol | Application            |
| :-------------: | :--------: | :------: | :--------------------- |
| 80, 443         | IPv4/IPv6  | TCP      | nginx, reverse proxy   |
| 8443            | IPv4/IPv6  | TCP      | nginx, federation      |
| 3478            | IPv4       | UDP      | LiveKit TURN           |
| 5349            | IPv4       | TCP      | LiveKit TURN TLS       |
| 7881            | IPv4/IPv6  | TCP      | LiveKit RTC            |
| 50000-60000     | IPv4/IPv6  | TCP/UDP  | LiveKit RTC            |
| 3480            | IPv4       | TCP/UDP  | coturn TURN            |
| 5351            | IPv4       | TCP/UDP  | coturn TURN TLS        |
| 40000-49999     | IPv4       | TCP/UDP  | coturn RTC             |


The ports necessary for TURN depend very much on the specific configuration of
[coturn](../coturn#configuration) and/or [LiveKit](../element-call#livekit).
Added something about the firewall. 2024-11-04 17:54:42 +01:00			`# Firewall`

Changed TURN documentation so we can use both legacy and Element Call. Fixed a few broken internal links. 2025-01-08 14:51:11 +01:00			`Several ports need to be opened in the firewall, this is a list of all ports`
			`that are needed by the components we describe in this document.`
Added something about the firewall. 2024-11-04 17:54:42 +01:00
Changed TURN documentation so we can use both legacy and Element Call. Fixed a few broken internal links. 2025-01-08 14:51:11 +01:00			`Those for nginx are necessary for Synapse to work, the ones for coturn and`
			`LiveKit only need to be opened if you run those servers.`
Added something about the firewall. 2024-11-04 17:54:42 +01:00

Updated firewall ports. 2024-11-15 21:48:52 +01:00			`\| Port(s) / range \| IP version \| Protocol \| Application \|`
			`\| :-------------: \| :--------: \| :------: \| :--------------------- \|`
			`\| 80, 443 \| IPv4/IPv6 \| TCP \| nginx, reverse proxy \|`
			`\| 8443 \| IPv4/IPv6 \| TCP \| nginx, federation \|`
Changed TURN documentation so we can use both legacy and Element Call. Fixed a few broken internal links. 2025-01-08 14:51:11 +01:00			`\| 3478 \| IPv4 \| UDP \| LiveKit TURN \|`
			`\| 5349 \| IPv4 \| TCP \| LiveKit TURN TLS \|`
			`\| 7881 \| IPv4/IPv6 \| TCP \| LiveKit RTC \|`
			`\| 50000-60000 \| IPv4/IPv6 \| TCP/UDP \| LiveKit RTC \|`
			`\| 3480 \| IPv4 \| TCP/UDP \| coturn TURN \|`
			`\| 5351 \| IPv4 \| TCP/UDP \| coturn TURN TLS \|`
			`\| 40000-49999 \| IPv4 \| TCP/UDP \| coturn RTC \|`
Added something about the firewall. 2024-11-04 17:54:42 +01:00
Updated firewall ports. 2024-11-15 21:48:52 +01:00
Changed TURN documentation so we can use both legacy and Element Call. Fixed a few broken internal links. 2025-01-08 14:51:11 +01:00			`The ports necessary for TURN depend very much on the specific configuration of`
			`[coturn](../coturn#configuration) and/or [LiveKit](../element-call#livekit).`
Minor edits, updated firewall doc. 2024-11-25 15:27:03 +01:00