Jitsi: Difference between revisions
Jump to navigation
Jump to search
| (One intermediate revision by the same user not shown) | |||
| Line 31: | Line 31: | ||
</syntaxhighlight> | </syntaxhighlight> | ||
== Jitsi Deb Repo == | == Jitsi Deb Repo == | ||
Maybe check the Jitsi docs on Ubuntu latest, especially if running Deb 12 or higher. | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
$ echo deb http://packages.prosody.im/debian $(lsb_release -sc) main | sudo tee -a /etc/apt/sources.list | $ echo deb http://packages.prosody.im/debian $(lsb_release -sc) main | sudo tee -a /etc/apt/sources.list | ||
| Line 96: | Line 98: | ||
Success! | Success! | ||
https://meet.bobbushman.com/ | |||
Had troubles with certbot a couple times, might have to re-run: | |||
<pre> | <pre> | ||
certbot --nginx -d meet.bobbushman.com --register-unsafely-without-email | |||
</pre> | </pre> | ||
== Firewall == | == Firewall == | ||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
Latest revision as of 18:40, 12 November 2023
Stop / Start
systemctl stop jicofo jitsi-videobridge2 nginx prosody coturn
systemctl start jicofo jitsi-videobridge2 nginx prosody coturn
Links
- Self-Hosting Guide: https://jitsi.github.io/handbook/docs/devops-guide/devops-guide-quickstart/
Setup
Host
- interserver.net: hellman.deadmandao.com
- namecheap.com: CNAME meet.bobbushman.com -> hellman.deadmandao.com
- Apache Note: "Nginx/Apache: As we prefer the usage of Nginx as webserver, the installer checks first for the presence of Nginx and then for Apache." - Jitsi
- IE: nginx is not required. (though Apache is second-class, so maybe it won't be automatic)
Packages
sudo apt update -y && sudo apt upgrade -y
sudo apt install -y gnupg apt-transport-https ufw emacs-nox curl
sudo apt install -y certbot python3-certbot-nginx openjdk-17-jre
Hostname
$ sudo hostnamectl set-hostname meet.bobbushman.com
$ sudo emacs -nw /etc/hosts
# add 66.23.231.157 meet.bobbushman.com
$ ping meet.bobbushman.com
Jitsi Deb Repo
Maybe check the Jitsi docs on Ubuntu latest, especially if running Deb 12 or higher.
$ echo deb http://packages.prosody.im/debian $(lsb_release -sc) main | sudo tee -a /etc/apt/sources.list
$ wget https://prosody.im/files/prosody-debian-packages.key -O- | sudo apt-key add -
$ sudo apt update
$ sudo apt install lua5.2
$ curl -sL https://download.jitsi.org/jitsi-key.gpg.key | sudo sh -c 'gpg --dearmor > /usr/share/keyrings/jitsi-keyring.gpg'
$ echo 'deb [signed-by=/usr/share/keyrings/jitsi-keyring.gpg] https://download.jitsi.org stable/' | sudo tee /etc/apt/sources.list.d/jitsi-stable.list > /dev/null
Jitsi Install
$ sudo apt install jitsi-meet
Dependency error
sudo apt update has a 410 error, missing signature. trying a different prosody repo
$ sudo curl -sL https://prosody.im/files/prosody-debian-packages.key -o /etc/apt/keyrings/prosody-debian-packages.key
$ echo "deb [signed-by=/etc/apt/keyrings/prosody-debian-packages.key] http://packages.prosody.im/debian $(lsb_release -sc) main" | sudo tee /etc/apt/sources.list.d/prosody-debian-packages.list
$ sudo apt update
same 410 error
Trying to debug.
$ sudo apt install jitsi-meet
dependency error, jits-meet-prosody, jitsi-meet-turnserver
$ sudo apt install jitsi-meet-prosody
dependency error prosody
$ sudo apt install prosody
Seems to have worked
$ sudo apt install jitsi-meet-prosody
dependency error prosody, 0.11.7 versus 0.11.2
Checked one of my Lightsail boxes, running Debian 11, it has a newer version of Prosody. Going to try lighting up on there.
Actually, trying to upgrade my interserver box to Deb 11 first.
$ sudo emacs /etc/apt/sources.list # change buster to bullseye
$ sudo apt update
$ sudo apt upgrade
$ sudo apt full-upgrade
$ sudo apt autoremove
Install Jitsi
$ sudo apt install jitsi-meet
Success!
Had troubles with certbot a couple times, might have to re-run:
certbot --nginx -d meet.bobbushman.com --register-unsafely-without-email
Firewall
$ sudo ufw allow 80/tcp
$ sudo ufw allow 443/tcp
$ sudo ufw allow 10000/udp
$ sudo ufw allow 22/tcp
$ sudo ufw allow 3478/udp
$ sudo ufw allow 5349/tcp
$ sudo ufw enable
$ sudo ufw status verbose
root@vps2364995:~# ufw enable Command may disrupt existing ssh connections. Proceed with operation (y|n)? y ERROR: problem running ufw-init Warning: Extension conntrack revision 0 not supported, missing kernel module? Warning: Extension conntrack is not supported, missing kernel module? iptables-restore v1.8.9 (nf_tables): line 2: RULE_APPEND failed (No such file or directory): rule in chain ufw-track-output line 3: RULE_APPEND failed (No such file or directory): rule in chain ufw-track-output Warning: Extension conntrack revision 0 not supported, missing kernel module? Warning: Extension conntrack is not supported, missing kernel module? Warning: Extension conntrack is not supported, missing kernel module? Warning: Extension conntrack is not supported, missing kernel module? Warning: Extension conntrack is not supported, missing kernel module? iptables-restore v1.8.9 (nf_tables): line 25: RULE_APPEND failed (No such file or directory): rule in chain ufw-before-input line 26: RULE_APPEND failed (No such file or directory): rule in chain ufw-before-output line 27: RULE_APPEND failed (No such file or directory): rule in chain ufw-before-forward line 30: RULE_APPEND failed (No such file or directory): rule in chain ufw-before-input