Audio/Video WebRTC connection over TURN does not work
Reported by
g...@innovaphone.com,
Mar 3 2016
|
|||||||||||||
Issue descriptionUserAgent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:44.0) Gecko/20100101 Firefox/44.0 Example URL: Steps to reproduce the problem: 1. Use a WebRTC application to establish an Audio Video connection between two Chrome Browsers in 2 private Networks with symmetric NAT and innovaphone TURN server 2. No Audio/Video 3. On one side ICE continues up to Channel Bind on the other Side just Create Permissions is performed What is the expected behavior? Both side do Channel Bind What went wrong? ICE seems to be stuck on one side Did this work before? N/A Is it a problem with Flash or HTML5? HTML5 Does this work in other browsers? Yes Chrome version: Version 49.0.2623.75 m Channel: stable OS Version: 10.0 Flash Version:
,
Mar 4 2016
Question for the original reporter - with the same client setup (i.e. "two Chrome Browsers in 2 private Networks with symmetric NAT"), are you able to establish a call using https://appr.tc/? I ask because that application also uses TURN (though not the "innovaphone TURN server"), and I haven't seen similar reports from appr.tc users.
,
Mar 4 2016
,
Mar 5 2016
I tested appr.tc in my network environment and it works, but it uses TURN over UDP. We are using TURN over TCP. Could you try with our TURN: turn.innovaphone.com User: chromium Password: innovaphone The TURN server support UDP and TCP on the well-known ports. We experience the problem with TCP, but we have not tested UDP. Could you give me access to another TURN server, which supports TCP, I could try with our applications
,
Mar 5 2016
I believe AppRTC filters out TCP candidates over TURN as it yields bad performance. https://github.com/webrtc/apprtc/blob/master/src/web_app/js/peerconnectionclient.js#L333
,
Mar 6 2016
gd: Just FYI: since you in your comment #4 you provided this information publicly, many users can now use this account (but I guess you can just disable it if the traffic runs high). I'm not clear if the credentials you provided means that turn server instance will provide both UDP and TCP turn or only TCP? UDP is essential for low latency and TCP should only be a worst-case fallback, although WebRTC should support it. Your TURN server should ideally support both. Can you provide us with login credentials to your "WebRTC application" as well so we can try it out? Feel free to e-mail the recipients CCed to this bug directly instead of posting here.
,
Mar 6 2016
Yes, we use TCP as fallback, because most company firewalls block UDP traffic. I monitor our TURN an disable the account if traffic is high. Our TURN server support TCP and UDP. I will send you accounts for our application in seperate mail.
,
Mar 7 2016
Honghai, can you look at this? And can we get a native log? That would help a lot.
,
Mar 7 2016
FYI about #5: Even if TCP is used to the TURN server to the side doing the allocation, it can still appear as a non-TCP candidate as well.
,
Mar 7 2016
,
Mar 7 2016
,
Mar 7 2016
,
Mar 8 2016
to #9 Yes we only support UDP candidates. Only the TURN protocol to the TURN server uses TCP. So we can use TCP to tunnel the RTP to the TURN server and the TURN server does UDP to the far side.
,
Mar 8 2016
FYI, if both sides are behind UDP-blocking firewalls and you only use UDP candidates, then only TURN-TURN candidate pairs can work, and they won't work if there's anything blocking traffic between the TURN servers (or if it's the same TURN server, preventing it from sending traffic to itself). A native log would help a lot.
,
Mar 9 2016
Thank you for providing more feedback. Assigning to requester "tnakamura@chromium.org" for another review. For more details visit https://sites.google.com/a/chromium.org/dev/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 10 2016
,
Oct 17 2016
I looked at the provided log. TURN allocate and permission requests are made successfully. Both sides established a writable connection but then soon disconnected after a few seconds because stun ping did not go through. It is likely that the TURN server have some issues with the lifetime of permissions or allocation requests. By the way, AppRTC used TCP TURN server as well. If it worked while your app did not work in environments where UDP traffic were blocked, it is likely that your app or your TURN server had something wrong.
,
Nov 8 2016
I didn't come to the same conclusion looking at the logs from comments #15/#16. Packets seem to be going through the entire time, but the DTLS packets sent by client 1 aren't received properly: [6852:3256:0309/081532:ERROR:dtlstransportchannel.cc(483)] Jingle:Channel[audio|1|__]: Failed to handle DTLS packet. As a result, client 1 times out and tears down the connection. Then client 2 times out as well. A packet capture may be useful for figuring out why this is happening. It seems likely to be an issue with how the TURN server processes the ChannelData packets.
,
Nov 12 2016
,
Jan 17 2017
,
Mar 10 2017
Archiving since no feedback was provided for more than 3 months. Re-open if new information is available.
,
Mar 10 2017
|
|||||||||||||
►
Sign in to add a comment |
|||||||||||||
Comment 1 by brajkumar@chromium.org
, Mar 4 2016