NAT Traversal Protocols

This section covers the core components that enable WebRTC (Web Real-Time Communication) to establish peer-to-peer connectivity, particularly across NAT/firewall environments.

Component	Description	Use Case
ICE (Interactive Connectivity Establishment)	Framework that tries multiple methods to connect peers. Combines STUN and TURN for NAT traversal.	Establishing peer-to-peer connections.
STUN (Session Traversal Utilities for NAT)	Helps clients discover their public IP and NAT type. Enables direct peer-to-peer communication.	Enables connections behind NAT/firewalls.
TURN (Traversal Using Relays around NAT)	Relays media when direct connection fails. Acts as a media proxy server.	Ensures reliable communication fallback.
WebRTC (Web Real-Time Communication)	A set of APIs and underlying protocols enabling peer-to-peer audio, video, and data in browsers. Enables real-time communication with NAT traversal support via ICE, STUN, and TURN.	Browser-based peer-to-peer media/data connections

ICE (Interactive Connectivity Establishment)

RFC: RFC 8445

Main Features:

• Connectivity framework for NAT/firewall traversal

• Uses STUN and TURN as fallback mechanisms

• Collects multiple candidates (IP addresses and ports)

Use Cases:

• Peer-to-peer connection setup in WebRTC

• Negotiating the best path between peers

Alternative Protocols:

• None – ICE is the standard coordination mechanism for WebRTC

Let us learn more about ICE:

• Learnings in this section

• Terminology

• Version Info

• ICE Version&RFC Details

• ICE Basic Setup on Ubuntu using IPv4

• ICE Basic Setup on Ubuntu using IPv6

• ICE Protocol Packet Details

• ICE Usecases

• ICE Basic Features

• ICE Feature : Candidate Gathering

• ICE Feature : Candidate Prioritization

• ICE Feature : Candidate Pairing

• ICE Feature : Connectivity Checks

• ICE Feature : Nomination

• ICE Feature : NAT Traversal

• ICE Feature : STUN Integration

• ICE Feature : TURN Integration

• ICE Feature : Consent Freshness

• ICE Feature : Trickle ICE Support

• Reference links

Jump to “ICE”

STUN (Session Traversal Utilities for NAT)

RFC: RFC 5389

Main Features:

• Discovers public IP addresses of clients

• Identifies NAT type and firewall behavior

• Lightweight UDP-based protocol

Use Cases:

• Peer discovery in WebRTC

• Assisting direct P2P media path setup

Alternative Protocols:

• TURN – Used when STUN fails

Let us learn more about STUN:

• Learnings in this section

• Terminology

• Version Info

• STUN_SERVER Version&RFC Details

• STUN_SERVER Basic Setup on Ubuntu using IPv4

• STUN_SERVER Basic Setup on Ubuntu using IPv6

• STUN_SERVER Protocol Packet Details

• STUN_SERVER Usecases

• STUN_SERVER Basic Features

• STUN_SERVER Feature : Public IP Discovery

• STUN_SERVER Feature : NAT Type Detection

• STUN_SERVER Feature : Port Mapping Discovery

• STUN_SERVER Feature : Lightweight Protocol

• STUN_SERVER Feature : Client-Server Architecture

• STUN_SERVER Feature : Support for IPv4 and IPv6

• STUN_SERVER Feature : Used in WebRTC and VoIP

• Reference links

Jump to “STUN”

TURN (Traversal Using Relays around NAT)

RFC: RFC 8656

Main Features:

• Relays media through an intermediate server

• Used when direct peer connection is not possible

• Supports TCP and UDP relaying

Use Cases:

• WebRTC calls behind symmetric NAT or strict firewalls

• Reliable fallback for P2P media delivery

Alternative Protocols:

• STUN – Preferred when NAT allows direct access

Let us learn more about TURN:

• Learnings in this section

• Terminology

• Version Info

• TURN_SERVER Version&RFC Details

• TURN_SERVER Basic Setup on Ubuntu using IPv4

• TURN_SERVER Basic Setup on Ubuntu using IPv6

• TURN_SERVER Protocol Packet Details

• TURN_SERVER Usecases

• TURN_SERVER Basic Features

• TURN_SERVER Feature : NAT Traversal

• TURN_SERVER Feature : Relay Allocation

• TURN_SERVER Feature : Transport Protocol Support

• TURN_SERVER Feature : Authentication

• TURN_SERVER Feature : Permission Management

• TURN_SERVER Feature : Channel Binding

• TURN_SERVER Feature : IPv4 and IPv6 Support

• TURN_SERVER Feature : ICE Integration

• TURN_SERVER Feature : Secure Media Relay

• TURN_SERVER Feature : Resource Management

• Reference links

Jump to “TURN”

WebRTC (Web Real-Time Communication)

Standard: W3C Recommendation (latest March 13, 2025) Components: ICE (RFC 8445), STUN (RFC 5389), TURN (RFC 8656), and Media/Data APIs Status: Defines APIs (e.g., RTCPeerConnection) and underlying NAT traversal mechanisms :contentReference[oaicite:0]{index=0}

Main Features:

• Browser-based framework for real-time peer-to-peer audio, video, and data

• Integrates ICE, STUN, and TURN for NAT/firewall traversal :contentReference[oaicite:1]{index=1}

• Exposes APIs (such as RTCPeerConnection) to manage connection setup and media handling

• Supports media handling, secure transport (DTLS/SRTP), and data channels

Use Cases:

• Video conferencing, voice calls, and real-time messaging in browsers

• Peer-to-peer file sharing and data exchange via WebRTC Data Channels

• Any app needing real-time, low-latency, NAT-traversing communication directly between clients

Alternative Protocols/Frameworks:

• SIP/WebRTC Gateway – for interoperability with legacy VoIP

• Traditional real-time transport using centralized servers (e.g. WebSockets, media servers)

• Custom media/data transport over VPN or proprietary mechanisms

Let us learn more about WebRTC:

• Learnings in this section

• Terminology

• Version Info

• WebRTC Version&IEEE Details

• WebRTC Basic Setup on Ubuntu using IPv4

• WebRTC Basic Setup on Ubuntu using IPv6

• WebRTC Protocol Packet Details

• WebRTC Usecases

• WebRTC Basic Features

• Reference links

Jump to “WebRTC”