This unit is provided by:
Options
-
[Install]-
WantedBy=multi-user.target
-
-
[Service]-
AmbientCapabilities=CAP_NET_BIND_SERVICE -
CPUSchedulingPolicy=other -
CapabilityBoundingSet=CAP_NET_BIND_SERVICE -
EnvironmentFile=-/etc/sysconfig/coturn-%i -
ExecReload=/bin/kill -HUP $MAINPID -
ExecStart=/usr/bin/turnserver -c /etc/coturn/%i.conf --pidfile /run/coturn/turnserver-%i.pid $EXTRA_OPTIONS -
Group=coturn -
LimitCORE=infinity -
LimitNOFILE=999999 -
LimitNPROC=60000 -
LimitRTPRIO=infinity -
LimitRTTIME=7000000 -
LockPersonalityIntroduced in systemd 235=yes -
MemoryDenyWriteExecuteIntroduced in systemd 231=yes -
MountFlags=private -
NoNewPrivilegesIntroduced in systemd 239=yes -
PIDFile=/run/coturn/turnserver.pid -
PrivateDevicesIntroduced in systemd 209=yes -
PrivateTmp=yes -
ProtectClockIntroduced in systemd 245=yes -
ProtectControlGroupsIntroduced in systemd 232=yes -
ProtectHomeIntroduced in systemd 214=yes -
ProtectHostnameIntroduced in systemd 242=yes -
ProtectKernelLogsIntroduced in systemd 244=yes -
ProtectKernelModulesIntroduced in systemd 232=yes -
ProtectKernelTunablesIntroduced in systemd 232=yes -
ProtectSystemIntroduced in systemd 214=full -
RemoveIPCIntroduced in systemd 232=yes -
Restart=on-abort -
RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX -
RestrictNamespacesIntroduced in systemd 233=yes -
RestrictRealtimeIntroduced in systemd 231=yes -
RestrictSUIDSGIDIntroduced in systemd 242=yes -
SystemCallArchitectures=native -
SystemCallFilter=~@clock @debug @module @mount @raw-io @reboot @swap @privileged @resources @cpu-emulation @obsolete -
Type=simple -
UMask=0007 -
User=coturn
-
-
[Unit]-
After=syslog.target network.target -
Description=STUN and TURN relay server for VoIP and WebRTC %i -
Documentation=man:coturn(1) man:turnadmin(1) man:turnserver(1)
-
Additionnal notes
Nothing here.