My understanding is that for the HPB server to work in all conditions, its TURN server must be reachable on the 443 port, as the “default” 3478 port may not be reachable by everyone (e.g. it is not listed in the “guaranteed” opened ports (in French) of the common eduroam network).
Indeed in some tests I did using the “default” settings, it generally works, but people on eduroam wifi get continuously disconnected from the “call” part (chat works).
Hetzner, my NC provider, already provide STUN/TURN on the 443 port (stun.your-storageshare.de:443 and turn.your-storageshare.de:443) , so how do I set the ghcr.io/nextcloud-releases/aio-talk image (in another VPS where ports 80 and 443 are already used by a dockenized NGNIX proxy) so that the HPB server works with the STUN/TURN servers provided by Hetzner ?
tcp/443 which is used as fallback for the default udp/3478 might allow connectivity in some special networks but it is still only a bad second choice - frequent disconnects are the expected result.
If people connect from highly restricted network there might be no good connection at all (because in such networks even tcp/443 often is not “open” but flows through some “security” appliance or proxy server which brakes the connection.
simply don’t use the talk image. In fact the image has wrong/bad naming - Talk itself runs as an app inside of Nextcloud application. “talk” image ships additional services HPB, STUN/TURN and is not required if you are going to use external TURN service. simply configure your providers service in Talk admin settings.
Thank you. Indeed the Hetzner NC, with their STUN/TURN server works very well (even from people on eduroam), I was considering adding the HPB to allow more simultaneous users for the communication needs of my research group. I managed to get it working, but then guys on eduroam get disconnected.