Is it safe to disable or uninstall Coturn-Synapse?

Lanky · January 14, 2024, 8:44pm

My YunoHost server

Hardware: Raspberry 3B
YunoHost version: 11.2.9.1
Synapse version: 1.98
I have access to my server : Through SSH and/or through the webadmin
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : No

Description of my issue

Hi everyone, since several months now, my server is crashing at times and I suspect Coturn-Synapse to be the cause. As I don’t use it, I was wondering if it was ok to disable or uninstall it? (it is installed with Synapse by default)

Here is the last log I have a the moment my server crashed

Thank you for any help.

LOGFILE: journalctl
-- Journal begins at Tue 2022-12-06 18:45:10 GMT, ends at Sun 2024-01-14 15:47:11 GMT. --
Jan 14 03:17:11 turnserver[524]:                                                 incoming to the relay endpoints.
Jan 14 03:17:11 turnserver[524]:  --cli-max-output-sessions                        Maximum number of output sessions in ps CLI command.
Jan 14 03:17:11 turnserver[524]:                                                 This value can be changed on-the-fly in CLI. The default value is 256.
Jan 14 03:17:11 turnserver[524]:  --ne=[1|2|3]                                        Set network engine type for the process (for internal purposes).
Jan 14 03:17:11 turnserver[524]:  -h                                                Help
Jan 14 03:17:11 turnserver[524]: 0: :
Jan 14 03:17:11 turnserver[524]: RFC 3489/5389/5766/5780/6062/6156 STUN/TURN Server
Jan 14 03:17:11 turnserver[524]: Version Coturn-4.5.2 'dan Eider'
Jan 14 03:17:11 turnserver[524]: 0: : log file opened: /var/log/matrix-synapse/turnserver.log
Jan 14 03:17:11 turnserver[524]: 0: :
Jan 14 03:17:11 turnserver[524]: Max number of open files/sockets allowed for this process: 999999
Jan 14 03:17:11 turnserver[524]: 0: :
Jan 14 03:17:11 turnserver[524]: Due to the open files/sockets limitation,
Jan 14 03:17:11 turnserver[524]: max supported number of TURN Sessions possible is: 499500 (approximately)
Jan 14 03:17:11 turnserver[524]: 0: :
Jan 14 03:17:11 turnserver[524]: ==== Show him the instruments, Practical Frost: ====
Jan 14 03:17:11 turnserver[524]: 0: : TLS supported
Jan 14 03:17:11 turnserver[524]: 0: : DTLS supported
Jan 14 03:17:11 turnserver[524]: 0: : DTLS 1.2 supported
Jan 14 03:17:11 turnserver[524]: 0: : TURN/STUN ALPN supported
Jan 14 03:17:11 turnserver[524]: 0: : Third-party authorization (oAuth) supported
Jan 14 03:17:11 turnserver[524]: 0: : GCM (AEAD) supported
Jan 14 03:17:11 turnserver[524]: 0: : OpenSSL compile-time version: OpenSSL 1.1.1k  25 Mar 2021 (0x101010bf)
Jan 14 03:17:11 turnserver[524]: 0: :
Jan 14 03:17:11 turnserver[524]: 0: : SQLite supported, default database location is /var/lib/turn/turndb
Jan 14 03:17:11 turnserver[524]: 0: : Redis supported
Jan 14 03:17:11 turnserver[524]: 0: : PostgreSQL supported
Jan 14 03:17:11 turnserver[524]: 0: : MySQL supported
Jan 14 03:17:11 turnserver[524]: 0: : MongoDB is not supported
Jan 14 03:17:11 turnserver[524]: 0: :
Jan 14 03:17:11 turnserver[524]: 0: : Default Net Engine version: 3 (UDP thread per CPU core)
Jan 14 03:17:11 turnserver[524]: =====================================================
Jan 14 03:17:11 turnserver[524]: 0: : Domain name:
Jan 14 03:17:11 turnserver[524]: 0: : Default realm: matrix.mydomain.com
Jan 14 03:17:12 turnserver[524]: 0: : SSL23: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 14 03:17:12 turnserver[524]: 0: : SSL23: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 14 03:17:12 turnserver[524]: 0: : TLS1.2: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 14 03:17:12 turnserver[524]: 0: : TLS1.2: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 14 03:17:12 turnserver[524]: 0: : TLS cipher suite: DEFAULT
Jan 14 03:17:12 turnserver[524]: 0: : DTLS: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 14 03:17:12 turnserver[524]: 0: : DTLS: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 14 03:17:12 turnserver[524]: 0: : DTLS1.2: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 14 03:17:12 turnserver[524]: 0: : DTLS1.2: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 14 03:17:12 turnserver[524]: 0: : DTLS cipher suite: DEFAULT
Jan 14 03:17:12 turnserver[524]: 0: : NO EXPLICIT LISTENER ADDRESS(ES) ARE CONFIGURED
Jan 14 03:17:12 turnserver[524]: 0: : ===========Discovering listener addresses: =========
Jan 14 03:17:12 turnserver[524]: 0: : Listener address to use: 127.0.0.1
Jan 14 03:17:12 turnserver[524]: 0: : Listener address to use: ::1
Jan 14 03:17:12 turnserver[524]: 0: : ERROR: main: Cannot configure any meaningful IP listener address
Jan 14 12:28:07 systemd[1]: Started Coturn.

orhtej2 · January 15, 2024, 12:39pm

I believe you can disable it in WebAdmin->Tools->Services, it’s only used for video calls IIRC and should not affect core chatting functionality.

OniriCorpe · January 15, 2024, 2:44pm

to disable it, you can use the following command:
yunohost service disable coturn-synapse

Lanky · January 15, 2024, 8:52pm

Thanks to both of you! I will use the command to disable it and see if my server performs better.

I will mark it as resolved for now. But, just out of curiosity I checked again the logs of coturn, I wonder what those 3 last lines Connection reset by peer are about since my Synapse server is juste for a few friends and no one use the Video Calls feature.

If anyone know if it is a normal behavior, I would be interested to know.

Thank you again.

Jan 15 05:35:03 turnserver[9343]: 0: : SSL23: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 15 05:35:03 turnserver[9343]: 0: : SSL23: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 15 05:35:03 turnserver[9343]: 0: : TLS1.2: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 15 05:35:03 turnserver[9343]: 0: : TLS1.2: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 15 05:35:03 turnserver[9343]: 0: : TLS cipher suite: DEFAULT
Jan 15 05:35:03 turnserver[9343]: 0: : DTLS: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 15 05:35:03 turnserver[9343]: 0: : DTLS: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 15 05:35:03 turnserver[9343]: 0: : DTLS1.2: Certificate file found: /etc/yunohost/certs/matrix.mydomain.com/crt.pem
Jan 15 05:35:03 turnserver[9343]: 0: : DTLS1.2: Private key file found: /etc/yunohost/certs/matrix.mydomain.com/key.pem
Jan 15 05:35:03 turnserver[9343]: 0: : DTLS cipher suite: DEFAULT
Jan 15 05:35:03 turnserver[9343]: 0: : NO EXPLICIT LISTENER ADDRESS(ES) ARE CONFIGURED
Jan 15 05:35:03 turnserver[9343]: 0: : ===========Discovering listener addresses: =========
Jan 15 05:35:03 turnserver[9343]: 0: : Listener address to use: 127.0.0.1
Jan 15 05:35:03 turnserver[9343]: 0: : Listener address to use: 192.168.0.13
Jan 15 05:35:03 turnserver[9343]: 0: : Listener address to use: ::1
Jan 15 05:35:03 turnserver[9343]: 0: : Listener address to use: 2a01:e34:ec44:a9d0:2ec2:fbe8:846a:40d6
Jan 15 05:35:03 turnserver[9343]: 0: : =====================================================
Jan 15 05:35:03 turnserver[9343]: 0: : Total: 2 'real' addresses discovered
Jan 15 05:35:03 turnserver[9343]: 0: : =====================================================
Jan 15 05:35:03 turnserver[9343]: 0: : NO EXPLICIT RELAY ADDRESS(ES) ARE CONFIGURED
Jan 15 05:35:03 turnserver[9343]: 0: : ===========Discovering relay addresses: =============
Jan 15 05:35:03 turnserver[9343]: 0: : Relay address to use: 192.168.0.13
Jan 15 05:35:03 turnserver[9343]: 0: : Relay address to use: 2a01:e34:ec44:a9d0:2ec2:fbe8:846a:40d6
Jan 15 05:35:03 turnserver[9343]: 0: : =====================================================
Jan 15 05:35:03 turnserver[9343]: 0: : Total: 2 relay addresses discovered
Jan 15 05:35:03 turnserver[9343]: 0: : =====================================================
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (main listener thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : WARNING: I cannot support STUN CHANGE_REQUEST functionality because only one IP address is provided
Jan 15 05:35:03 turnserver[9343]: 0: : Wait for relay ports initialization...
Jan 15 05:35:03 turnserver[9343]: 0: :   relay 192.168.0.13 initialization...
Jan 15 05:35:03 turnserver[9343]: 0: :   relay 192.168.0.13 initialization done
Jan 15 05:35:03 turnserver[9343]: 0: :   relay 2a01:e34:ec44:a9d0:2ec2:fbe8:846a:40d6 initialization...
Jan 15 05:35:03 turnserver[9343]: 0: :   relay 2a01:e34:ec44:a9d0:2ec2:fbe8:846a:40d6 initialization done
Jan 15 05:35:03 turnserver[9343]: 0: : Relay ports initialization done
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (general relay thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (general relay thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : turn server id=3 created
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (general relay thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : turn server id=1 created
Jan 15 05:35:03 turnserver[9343]: 0: : turn server id=0 created
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (general relay thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : turn server id=2 created
Jan 15 05:35:03 turnserver[9343]: 0: : Total General servers: 4
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (auth thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (auth thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : IO method (admin thread): epoll (with changelist)
Jan 15 05:35:03 turnserver[9343]: 0: : SQLite DB connection success: /var/lib/turn/turndb
Jan 15 05:35:03 turnserver[9343]: 5635: : ERROR: session 002000000000000004: TLS/TCP socket error: Connection reset by peer 212.102.40.218:37966
Jan 15 05:35:03 turnserver[9343]: 49813: : ERROR: session 003000000000000003: TLS/TCP socket error: Connection reset by peer 198.74.56.46:35744
Jan 15 05:35:03 turnserver[9343]: 55718: : ERROR: session 003000000000000004: TCP socket error: Connection reset by peer 80.66.88.204:65488

system · January 30, 2024, 8:52pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.