oleg/knowledge-base
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
83fd5cf55260d18078f7bfe6c808667553614b2d
knowledge-base/projects/niikn/matrix.md

121 lines
5.4 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
---
date: 2026-03-04
type: project
tags: [niikn, matrix]
---
# Matrix НИИКН (VM 107, 192.168.1.133)
## Общая информация
- **URL:** https://matrix.niikn.com (Element Web)
- **Homeserver (server_name):** matrix.niikn.com
- **Synapse:** v1.145.0
- **OS:** Ubuntu 24.04, 4 cores, 8GB RAM, 100GB disk
- **SSH:** root / 1qaz!QAZ (PermitRootLogin=yes)
- **Клонирован с:** VM 124 HomeLab (matrix.dttb.ru), перенастроен 2026-03-04
## Учётные данные
- **Admin Matrix:** @admin:matrix.niikn.com / 1qaz!QAZ
- **PostgreSQL:** synapse / Matrix2026!
- **registration_shared_secret:** NiIkN-Matrix-SharedSecret-2026
## Docker контейнеры
| Контейнер | Порт | Статус |
|-----------|------|--------|
| matrix-synapse | 8008 (host network) | Работает |
| matrix-element-web | 8080 | Работает |
| matrix-coturn | 3478 (host network) | Работает |
| matrix-livekit | 7880,7881,50100-50200 (host) | Работает (v1.9.11) |
| matrix-lk-jwt | 9090 (host) | Работает (v0.4.1) |
| matrix-ai-bot | - | Из клона, нужна проверка |
| mautrix-telegram | - | Из клона, нужна перенастройка |
| mautrix-whatsapp | - | Из клона, нужна перенастройка |
## Конфигурация
- **Docker compose:** /opt/matrix-synapse-docker/docker-compose.yml
- **Homeserver.yaml:** /opt/matrix-synapse-docker/data/homeserver.yaml
- **Element config:** /opt/matrix-synapse-docker/element-config.json
- **PostgreSQL:** на хосте (systemd postgresql.service)
- **DB reset script:** /root/reset-synapse-db.sh
## Email (через Mailcow НИИКН)
- **SMTP:** 192.168.1.128:587 (STARTTLS)
- **User:** noreply@niikn.com
- **Password:** NiIkN-NoReply-2026!
- **From:** "Matrix NIIKN <noreply@niikn.com>"
## NPM (proxy host ID:18)
- **Домен:** matrix.niikn.com
- **SSL:** Let's Encrypt cert ID:54
- **Locations:**
- / → 192.168.1.133:8080 (Element Web)
- /_matrix → 192.168.1.133:8008 (Synapse API)
- /_synapse → 192.168.1.133:8008 (Synapse Admin)
- /.well-known/matrix → 192.168.1.133:8008 (Well-known)
## Well-known
- **server:** `{"m.server":"matrix.niikn.com:443"}`
- **client:** `{"m.homeserver":{"base_url":"https://matrix.niikn.com/"},"org.matrix.msc4143.rtc_foci":[{"type":"livekit","livekit_service_url":"https://matrix.niikn.com/livekit/jwt/"}]}`
- Настроено через NPM advanced_config (return 200) на proxy host #18
## MikroTik проброс портов → 192.168.1.133
| Порт | Протокол | Назначение |
|------|----------|------------|
| 8448 | TCP | Matrix Federation |
| 3478 | TCP | TURN (звонки legacy) |
| 3478 | UDP | TURN (звонки legacy) |
| 7881 | TCP | LiveKit ICE/TCP |
| 50100-50200 | UDP | LiveKit WebRTC media |
## DNS записи (niikn.com → Spaceweb)
| Тип | Имя | Значение |
|-----|-----|----------|
| A | matrix | 85.235.181.190 |
| A | lk | 85.235.181.190 |
## TURN (Coturn)
- **External IP:** 85.235.181.190
- **Realm:** matrix.niikn.com
- **Shared secret:** b41fdf863e5c310580aa7199a6133b3651acda5b993708ac38e868c27bac7f01
## LiveKit (Element Call SFU) — развёрнут 2026-03-05
- **LiveKit Server:** v1.9.11 (docker: matrix-livekit, host network)
- **Config:** /opt/livekit/livekit.yaml
- **API key:** matrixrtc
- **Secret:** 8TyXGXsuKytM09OqQIzlCzpzlBrY4698HTN7mGxKU3E=
- **Порты:** 7880 (API/WS), 7881 (ICE TCP), 50100-50200 (WebRTC UDP)
- **node_ip:** 85.235.181.190
- **lk-jwt-service:** v0.4.1 (docker: matrix-lk-jwt, порт 9090)
- LIVEKIT_URL=wss://lk.niikn.com
- LIVEKIT_FULL_ACCESS_HOMESERVERS=matrix.niikn.com
- **NPM:** lk.niikn.com → 192.168.1.133:7880 (cert ID:55, websockets on)
- **NPM location:** matrix.niikn.com/livekit/jwt/ → 192.168.1.133:9090
- **Synapse:** msc3266+msc4222 enabled, max_event_delay_duration: 24h
## TODO
- [ ] Перенастроить mautrix-telegram для niikn.com (2026-04-18)
- [ ] Перенастроить mautrix-whatsapp для niikn.com (2026-04-18)
- [ ] Проверить/починить matrix-ai-bot (2026-04-18)
- [ ] Закрыть открытую регистрацию (enable_registration: false) (2026-04-18)
- [ ] Добавить SRV запись _matrix._tcp.niikn.com (опционально) (2026-04-18)
<!-- AUTO-SYNC FROM MEMORY.MD - DO NOT EDIT BELOW -->
## Matrix НИИКН (VM 107, 192.168.1.133) — Proxmox НИИКН
- Ubuntu 24.04, 4 cores, 8GB RAM, 100GB disk
- SSH: root / 1qaz!QAZ (matrix user тоже, PermitRootLogin=yes), fail2ban НЕ установлен, UFW неактивен
- Synapse v1.145.0 (MAS ОТКАЧЕН 2026-03-05, см. mas-niikn.md)
- Element Web (docker: matrix-element-web, порт 8080)
- Coturn (docker: matrix-coturn, порт 3478)
- LiveKit (docker: matrix-livekit, порт 7880/7881/50100-50200, v1.9.11)
- lk-jwt-service (docker: matrix-lk-jwt, порт 9090, v0.4.1)
- LiveKit key: matrixrtc, secret: 8TyXGXsuKytM09OqQIzlCzpzlBrY4698HTN7mGxKU3E=
- LiveKit config: /opt/livekit/livekit.yaml
- server_name: matrix.niikn.com
- Admin: @admin:matrix.niikn.com / 1qaz!QAZ
- DB: PostgreSQL synapse/Matrix2026!
- Docker compose: /opt/matrix-synapse-docker/docker-compose.yml
- NPM proxy host ID:18 (matrix.niikn.com), lk.niikn.com proxy host (cert ID:55)
- msc4108_enabled: false, msc3266+msc4222 enabled, max_event_delay_duration: 24h
- well-known: rtc_foci → https://matrix.niikn.com/livekit/jwt/
<!-- END AUTO-SYNC -->
Reference in New Issue View Git Blame Copy Permalink