... | @@ -4,12 +4,16 @@ Follow [Jitsi Load balancing guide](https://github.com/jitsi/jicofo/blob/master/ |
... | @@ -4,12 +4,16 @@ Follow [Jitsi Load balancing guide](https://github.com/jitsi/jicofo/blob/master/ |
|
|
|
|
|
This has been deployed on several machines, see https://git.fairkom.net/hosting/fairmeeting/issues/42 . Bare metal preferred.
|
|
This has been deployed on several machines, see https://git.fairkom.net/hosting/fairmeeting/issues/42 . Bare metal preferred.
|
|
|
|
|
|
Prepare videobridge servers with ansible playbook `hardening.yml` (in `/etc/ansible`). MAy
|
|
### Prepare server
|
|
require: `apt-get install python-apt`.
|
|
|
|
|
|
|
|
Change `hosts` and test first with `ansible all -m ping` from your laptop.
|
|
rename server to bridgeN in `/etc/hosts` and `/etc/hostname` and reboot
|
|
|
|
|
|
After that check SSH port an do a `sshd -t` after running the script so you do not lock yourself out! You might need to add:
|
|
apply ansible playbook `hardening.yml` (in `/etc/ansible`). May
|
|
|
|
require: ~~python `apt-get install python-apt` or~~ `ln --symbolic /usr/bin/python3 /usr/bin/python`
|
|
|
|
|
|
|
|
Change `/ansible/hosts` and test first with `ansible all -m ping` from your laptop. Then run with `ansible-playbook playbook.yml`
|
|
|
|
|
|
|
|
After that check SSH port an do a `sshd -t` after running the script so you do not lock yourself out! You better add missing keys:
|
|
|
|
|
|
`/usr/bin/ssh-keygen -A` or do each manually:
|
|
`/usr/bin/ssh-keygen -A` or do each manually:
|
|
|
|
|
... | @@ -90,6 +94,7 @@ JVB_OPTS="--apis=rest,xmpp --subdomain=jvb-HOSTINGPARTNER-0" |
... | @@ -90,6 +94,7 @@ JVB_OPTS="--apis=rest,xmpp --subdomain=jvb-HOSTINGPARTNER-0" |
|
|
|
|
|
In `/etc/systemd/system.conf` add
|
|
In `/etc/systemd/system.conf` add
|
|
```
|
|
```
|
|
|
|
# jitsi performance
|
|
DefaultLimitNOFILE=65000
|
|
DefaultLimitNOFILE=65000
|
|
DefaultLimitNPROC=65000
|
|
DefaultLimitNPROC=65000
|
|
DefaultTasksMax=65000
|
|
DefaultTasksMax=65000
|
... | @@ -108,8 +113,8 @@ net.core.netdev_max_backlog=100000 |
... | @@ -108,8 +113,8 @@ net.core.netdev_max_backlog=100000 |
|
|
|
|
|
# increase Linux autotuning TCP buffer limits
|
|
# increase Linux autotuning TCP buffer limits
|
|
# min, default, and max number of bytes to use
|
|
# min, default, and max number of bytes to use
|
|
net.ipv4.tcp_mem = 382089 509452 764178
|
|
net.ipv4.tcp_mem = 382401 509869 764802
|
|
net.ipv4.tcp_rmem = 4096 87380 4194304
|
|
net.ipv4.tcp_rmem = 4096 131072 6291456
|
|
net.ipv4.tcp_wmem = 4096 16384 4194304
|
|
net.ipv4.tcp_wmem = 4096 16384 4194304
|
|
|
|
|
|
# increase Linux autotuning UDP buffer limits
|
|
# increase Linux autotuning UDP buffer limits
|
... | | ... | |