I noticed that I had some issues establishing webrtc peer connections via my upnsense firewall.
I ran the connectivity test at https://test.webrtc.org/
And got:
Reflexive connectivity (failed)
[ INFO ] Gathered candidate of Type: srflx Protocol: udp Address: x.x.x.x
[ INFO ] Gathered candidate of Type: srflx Protocol: udp Address: x.x.x.x
[ WARN ] Could not connect using reflexive candidates, likely due to the network environment/configuration.
(x.x.x.x = my external WAN ip)
I did check the box "Automatic outbound NAT for reflection".
This particular test is known to be rather meaningless and doesn't work with most firewalls. Here's a pretty good explanation: https://github.com/webrtc/testrtc/issues/302
(As far as I know, "automatic outbound NAT for reflection" only applies to port forwards, so it's unrelated.)
Cheers
Maurice
Well it isn't only the test that fails. I can't webrtc without a TURN server... and in my mind STUN should work.