TURN server connectivity test fails with IP-based TLS certificate

LiveKit-Community · January 21, 2026, 1:38pm

This question originally came up in our Slack community and the thread has been consolidated here for long-term reference.

I’ve deployed LiveKit on a VPS without a load balancer. Everything works except the TURN part - the connectivity test fails on the TURN step.

My setup uses a TLS certificate issued for a raw IP address (not a domain name) as the tls_domain.

Could this be causing the TURN test to fail? Does LiveKit’s TURN server require a proper domain name for TLS?

LiveKit-Community · January 21, 2026, 1:38pm

If the embedded TURN service in LiveKit is failing with an IP-based TLS certificate, you can use an external TURN server like coturn instead.

This workaround has been confirmed to work successfully when the built-in TURN server has issues with non-domain certificates.

Topic		Replies	Views
How to configure LiveKit on GCP without public IPs for VMs Self Hosting kubernetes , turn-server	1	56	January 21, 2026
Troubleshooting WebRTC connection failures with Caddy reverse proxy Self Hosting other	1	19	January 21, 2026
Cannot connect to LiveKit server from another machine on the network Self Hosting	1	20	January 21, 2026
Livekit - Whatsapp media relay issue Telephony sip-trunking	2	21	March 17, 2026
Issues with integrating with Avatar locally (self-hosted) Self Hosting	2	11	March 10, 2026