From 857ff7fae7dc5a21b5aa3b8fb8b91092b8fea479 Mon Sep 17 00:00:00 2001
From: David Zhao <david@davidzhao.com>
Date: Wed, 22 Dec 2021 15:00:25 -0800
Subject: [PATCH] Update pion/turn to fix TURN TLS termination with external LB

version v0.15.1
---
 config-sample.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/config-sample.yaml b/config-sample.yaml
index 495ea4840..d702f30d7 100644
--- a/config-sample.yaml
+++ b/config-sample.yaml
@@ -115,9 +115,12 @@ keys:
 #   udp_port: 3478
 #   # defaults to 5349 - if not using a load balancer, this must be set to 443
 #   tls_port: 5349
+#   # set external_tl to true if using a L4 load balancer to terminate TLS. when enabled,
+#   # LiveKit expects unencrypted traffic on tls_port, and still advertise tls_port as a TURN/TLS candidate.
+#   external_tls: true
 #   # needs to match tls cert domain
 #   domain: turn.myhost.com
-#   # optional
+#   # optional (set only if not using external TLS termination)
 #   # cert_file: /path/to/cert.pem
 #   # key_file: /path/to/key.pem