Device Offline Issue with STUN Server Configuration in GenieACS

1

Hi Team,

Issue Summary:

As we attempted to run the STUN server with GenieACS but were unable to bring the device online.

Investigation and Actions Taken:

  1. Configuration Updates:
  • Edited the genieacs.env file at /opt/genieacs/genieacs.env
  • Added the following entries to configure the UDP connection request port:

ini

UDP_CONNECTION_REQUEST_PORT=3478  
GENIEACS_UDP_CONNECTION_REQUEST_PORT=3478
  1. STUN/TURN Server Setup:
  • Installed coturn to handle STUN/TURN server requirements:

arduino

apt-get install coturn  
systemctl status coturn  
systemctl start coturn  
systemctl stop coturn
  • Configured /etc/turnserver.conf with the following settings:

perl

listening-port=3478  
tls-listening-port=5349  

fingerprint  
lt-cred-mech  

use-auth-secret  
static-auth-secret=67a95d4e912e6702d6831ab5fbf269978004b2a3fb9b254523dc0b69015d9e79  

realm=turn.example.com  

total-quota=100  
stale-nonce=600  

cert=/etc/letsencrypt/live/turn.example.com/cert.pem  
pkey=/etc/letsencrypt/live/turn.example.com/privkey.pem  
cipher-list="ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384"  

no-sslv3  
no-tlsv1  
no-tlsv1_1  

dh2066  

no-stdout-log  
log-file=/var/tmp/turn.log  

no-loopback-peers  
no-multicast-peers  

proc-user=turnserver  
proc-group=turnserver
  1. GenieACS Configuration:
  • Updated genieacs.env with:

ini

GENIEACS_STUN_SERVER=<serverIP>:3478

Error Details:
The device remains offline with the following status:
<device info>: Device is offline
Screenshot attached:

Screenshot from 2025-02-24 15-19-45.png

Current Status:
Despite these configurations, the device is still offline when connecting to the ACS.

We would appreciate any insights or recommendations to resolve this issue.

2

Can anyone help me on this?

3

Struggeling with the same problem as there is little to no documentation how to use STUN properly. I use the 1.2.13 and fiddled together a container for myself with drumsergio’s container and an included stuntman so it’s runnning in the same container. I set the cwmp.udpConnectionRequestPort to 3478 in Admin → Config and I have a populated InternetGatewayDevice.ManagementServer.STUNEnable to true and a populated InternetGatewayDevice.ManagementServer.UDPConnectionRequestAddress with a correct IP and port it got from the STUN server on the CPE.

I enabled debugging for this explicit CPE and I see 3 times this event (masked for privacy):

event: outgoing UDP message
timestamp: 2025-03-01T16:06:37.114Z
remoteAddress: x.x.x.x
deviceId: 1449BC-Vigor2135FVac-1449BCXXXX
remotePort: 46838
body: "GET http://x.x.x.x:46838?ts=1740845197&id=3247567587&un=acs-cpe&cn=de9839c1ddxxxxxx&sig=6bf0bfd6055358ee1708dce87700e8cc4dxxxxxx HTTP/1.1\r\nHost: x.x.x.x:46838\r\n\r\n"
---

Which results in a “No contact from CPE” after the timeout.

I don’t know if it is an CPE- or acs-issue and there is this thread GenieACS works with STUN which points to acs