These are chat archives for malditogeek/vmux

7th
Mar 2015
simsasaile
@simsasaile
Mar 07 2015 00:15
Ok found a solution, now I use nginx with proxy_pass http://localhost:5000;. Is there a better way?
simsasaile
@simsasaile
Mar 07 2015 01:06
I take that back, with my solution is NAT not working :( What is the right way to use SSL/TLS-Encryption?
Mauro Pompilio
@malditogeek
Mar 07 2015 01:14
@simsasaile hi and thanks! I'm using stunnel for SSL termination, does the job and is very easy to configure
my current config looks like this:
pid = <path_to_your_pid.pid>
cert = <path_to_your_certificate.pem>
options = CIPHER_SERVER_PREFERENCE
ciphers = ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:DES-CBC3-SHA
sslVersion = all
options = NO_SSLv2
options = NO_SSLv3
[https]
accept = 443
connect = 5000
hope that helps
simsasaile
@simsasaile
Mar 07 2015 18:20
Thank you very much for your help, it's working great with stunnel! I have another question: If I open my local vmux-installation, my browser also establishes a connection to vmux.co probably for NAT-translation? Is it also possible to be completely independent from other services?
Mauro Pompilio
@malditogeek
Mar 07 2015 20:18
@simsasaile You'll always need (at least) a STUN server for any WebRTC application, you can replace this ones for your own if you prefer: https://github.com/malditogeek/vmux/blob/master/client/js/app/utils/peer_connection.coffee#L15-L21