I’m currently running a standalone Snowflake proxy in a docker container I’ve built to include the option to configure the ICE ephemeral ports range setting CLI parameter to have some control over the ports it uses so that I can configure my firewall/NAT not to restrict the proxy.
I’m currently using a range of 1000 UDP ports and based on the logs, it’s working so far (NAT type is unrestricted), with approx. 70 connections per hour, but I’ve been wondering if I can restrict the number of ports the proxy uses further without negatively impacting its performance.
To my understanding, those ports are used to establish the WebRTC connection to the Snowflake clients, so I’m assuming that the number of ports affects the number of simultaneous connections my proxy can handle. Is that correct?
Are there other points to consider (e.g., making it easier to block the connections to the proxy using those ports)?