-
Notifications
You must be signed in to change notification settings - Fork 2
/
defaults.jinja
29 lines (25 loc) · 996 Bytes
/
defaults.jinja
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
{% set def_route_device = salt['cmd.run_stdout']('ip -j route list default | sed -r \'s/.+dev":"([^"]+)".+/\\1/g\'', python_shell=true) %}
{% set def_route_ip = salt['cmd.run_stdout']('ip -j addr show '+ def_route_device+ ' | sed -r \'s/.+"inet","local":"([^"]+)",.+/\\1/g\'', python_shell=true) %}
{% load_yaml as defaults %}
domain: turn.{{ grains['fqdn'] }}
# auth_secret: openssl rand --hex 32
auth_secret:
listen_ip:
- {{ def_route_ip }}
external_ip: []
# - 60.70.80.91
# or - 60.70.80.91/172.17.19.101
ssl: true
ssl_cert: /etc/ssl/certs/ssl-cert-snakeoil.pem
ssl_key: /etc/ssl/private/ssl-cert-snakeoil.key
{# custom dhparam file to use instead of the 2066 bits predefined DH TLS key #}
ssl_dhparam: ""
udp_min_port: 49152
udp_max_port: 49752 {# 49152 + 600 #}
user_quota: 12
total_quota: 600
denied_peer_ip: []
allowed_peer_ip: []
{% endload %}
{% set settings=salt['grains.filter_by']({'none': defaults},
grain='none', default= 'none', merge= salt['pillar.get']('coturn', {})) %}