Internet-Security raven logo internet-security.com

UDP 5349

ProtocolUDP
Port5349
LabelsSTUN over TLS/DTLS a protocol for NAT traversal

Synopsis

  • UDP port 5349 is used by STUN and TURN over DTLS (the datagram/TLS variant) for NAT traversal in WebRTC, per RFC 7350.
  • The coturn TURN/STUN server supports DTLS on UDP 5349 and is widely deployed in production.
  • WebRTC clients based on Google’s libwebrtc (Chrome, Firefox, Safari, and many mobile SDKs) will use TURN-over-DTLS on UDP 5349 when offered by the server.
  • Real deployments that expose this via coturn include Jitsi Meet installations, Matrix/Element homeservers, and Nextcloud Talk servers.
  • Open-source WebRTC SFUs and gateways (e.g., Janus, mediasoup) commonly rely on coturn and can use UDP 5349 for TURN over DTLS.
  • Security note: misconfigured TURN servers listening on UDP 5349 are often abused as open relays/proxies and are actively scanned; require authentication and restrict peer permissions to prevent misuse.

Observed activity

Last 30 days Detailed chart

More information