ASVS Requirement 17.1.1

• Level: 2
• Chapter: V17 WebRTC
• Section: V17.1 TURN Server
• Source: 0x26-V17-WebRTC.md

Description

Verify that the Traversal Using Relays around NAT (TURN) service only allows access to IP addresses that are not reserved for special purposes (e.g., internal networks, broadcast, loopback). Note that this applies to both IPv4 and IPv6 addresses.