OMT WHEP Gateway v1.4.4

Stream OMT video sources to any web browser via WebRTC/WHEP. Deploy as a Linux appliance — boot, connect, stream.

What It Does

The OMT WHEP Gateway bridges Open Media Transport video sources to standard WebRTC/WHEP, so anyone with a web browser can watch live streams — no plugins, no apps, no downloads.

• OMT → WebRTC: Receives OMT sources on the local network and re-encodes them to WebRTC for browser playback
• WHIP Output (Alpha): Push channels to remote WHIP endpoints — CDNs, streaming platforms, or other WebRTC ingest servers. Configure per-channel from the web UI
• Multi-Codec: H.264, HEVC, AV1 with hardware encoding support (Intel VAAPI/QSV, NVIDIA NVENC, AMD AMF)
• Web UI: Channel management, live preview, multiview grid, real-time encoding stats
• Share Links: Each channel gets a watch URL you can send to anyone
• Cloudflare Tunnel: Stream to remote viewers with zero port forwarding
• WebSocket Relay: Automatic fallback for viewers behind strict firewalls

Use Cases

---

1 Install the Appliance

The gateway ships as a bootable Linux ISO. Flash it to a USB drive and boot on any x86_64 PC, NUC, or server.

Flash the ISO

• Download the ISO (906 MB)
• Flash to a USB drive using Rufus (Windows) or balenaEtcher (Windows/Mac/Linux)
• Boot your target machine from USB

Live Boot & Setup

The ISO boots into a live environment. A setup wizard runs on the console to configure hostname, admin password, GPU encoding, and TLS mode.

Install to Disk

To install permanently, run omt-install-to-disk from the console. This copies the live system to a local disk so settings persist across reboots.

First-Boot Services

After setup, the appliance will:

• Auto-detect your GPU (Intel VAAPI, NVIDIA NVENC, AMD AMF)
• Generate a self-signed TLS certificate
• Start the gateway service and display the dashboard URL on the console

---

2 Open the Dashboard

Open a web browser on any device on the same network and go to:

Dashboard — channel list with viewer counts, system CPU/RAM/network stats

Alpha

Viewer stats — click a viewer count to see per-session WebRTC details (IP, RTT, packet loss, bytes sent)

---

3 Configure HTTPS

Open Settings → TLS / HTTPS in the dashboard. Choose one of these modes:

Click Save Settings after making changes. Caddy reloads the configuration automatically.

Settings — TLS modes with Cloudflare Tunnel active and public URL

---

4 Add a Channel

Click + Add Channel on the dashboard. The gateway automatically discovers OMT sources on your network.

Channel Settings

Codec Recommendations

Add Channel — select source, codec, bitrate, audio, and viewer limit

Alpha

WHIP Outputs — push channels to remote WHIP endpoints (CDNs, streaming platforms)

---

5 Start & Watch

Click the Start button on your channel. The gateway begins encoding and you can:

• Preview — Click the eye icon on the channel card to watch in the dashboard
• Watch Link — Copy the watch URL and send it to anyone. Opens a full-screen player.
• Multiview — Click the grid icon in the header to open a multi-channel monitoring wall

Preview — live video playing directly in the dashboard

Watch URL Format

Watch page — full-screen player with LIVE indicator, shareable link

Multiview — 2x2 monitoring wall (1x1, 3x3, 4x4 also available)

---

6 Remote Access (Cloudflare Tunnel)

To share streams with viewers outside your local network without opening firewall ports:

• Go to Settings → Cloudflare
• Click Enable Cloudflare Tunnel and save
• A public URL (*.trycloudflare.com) is generated automatically — no account required
• Share the tunnel URL with remote viewers

Persistent Tunnel (Optional)

For a permanent URL with your own domain:

• Create a tunnel in the Cloudflare Zero Trust dashboard
• Point the tunnel to http://localhost:5290
• Paste the tunnel token in Settings → Cloudflare → Tunnel Token

Cloudflare TURN Relay (Optional)

For improved WebRTC connectivity behind strict firewalls:

• In the Cloudflare dashboard, go to Calls → TURN Keys
• Create a key and copy the Key ID and API Token
• Paste into Settings → Cloudflare → TURN Relay

---

7 Email Alerts (Optional)

Get notified when channels fail or OMT sources disappear. Go to Settings → Email Alerts:

• Enter your SMTP server details (host, port, username, password)
• Set a sender address and recipient list
• Enable Channel failure and/or Source loss triggers
• Click Send Test Email to verify

---

8 License

The gateway starts a 30-day trial on first boot. During the trial, all features are fully available.

• View your trial status in Settings → License
• A warning banner appears on the dashboard when 7 days or fewer remain
• When the trial expires, existing channels stop and new ones cannot be started
• Enter a license key in Settings → License → Activate to continue

Already purchased? Retrieve your license key.

---

API Reference

The gateway exposes a REST API at https://<host>/api/ for programmatic control.

Channels

Sources & System

WHEP (WebRTC Playback)

WHIP Outputs ALPHA

Push channels to remote WHIP ingest endpoints. Configured per-channel from the web UI or via API.

---

Network & Ports

---

SSH Access

The appliance has SSH enabled for administration:

Useful commands:

• omt-show-ip — Display dashboard URL, API endpoint, version
• sudo systemctl status omt-whep-gateway — Check service status
• sudo systemctl restart omt-whep-gateway — Restart the gateway
• sudo journalctl -u omt-whep-gateway -f — Follow live logs

---

Troubleshooting

• No sources found? Ensure the OMT encoder is on the same network/subnet. Check that UDP 5353 (mDNS) is not blocked. The appliance uses Avahi for DNS-SD discovery.
• Channel starts but video is black? Check the FFmpeg log (click the log icon on the channel card). Common causes: wrong source selected, source not actively sending.
• High CPU usage? Switch to hardware encoding (VAAPI, QSV, NVENC) if you have a supported GPU. Lower the bitrate or increase the preset speed.
• Viewers see "ICE gathering timeout"? This happens when WebRTC UDP is blocked. The player automatically falls back to WebSocket relay after 4 seconds. If using Cloudflare Tunnel, this is expected behaviour.
• Blank screen on watch page? The browser WebSocket relay fallback should activate automatically. Check that the channel is running (green status). Try refreshing.
• Certificate warning in browser? Install the CA certificate: visit http://<ip>/api/ca.crt and add it to your trusted roots. Or switch to Let's Encrypt in TLS settings.
• Audio not working? Check that audio is enabled in the channel settings. The player starts muted by default — click the unmute button.
• "Trial expired" error? Enter a license key in Settings → License, or contact contact@sebiulabs.co.uk.
• Channel keeps failing/restarting? Check the FFmpeg log for errors. Common issues: source disconnected, GPU driver not installed, codec not supported by hardware.
• Can't access dashboard remotely? Set up Cloudflare Tunnel in Settings, or ensure TCP 443 is forwarded to the appliance.

---

System Requirements

Recommended Hardware

Any modern x86_64 device with hardware video encode/decode and at least 6 CPU cores. Good choices include:

• Intel NUC (11th gen or newer) — built-in Quick Sync provides excellent H.264/HEVC/AV1 hardware encoding in a compact, low-power form factor. Ideal for on-site deployments.
• Mini PCs (Beelink, MinisForum, etc.) — Intel 12th/13th/14th gen or AMD Ryzen 6000+ with 6–8 cores and integrated GPU for hardware encoding.
• Small form-factor servers (Dell OptiPlex Micro, HP ProDesk Mini, Lenovo ThinkCentre Tiny) — Intel vPro CPUs with Quick Sync, enterprise-grade reliability.
• Virtual machines (Proxmox VE (open source), VMware ESXi, Hyper-V) — allocate 6 cores / 12 vCPUs and 8 GB RAM. GPU passthrough supported for hardware encoding.

Hardware Encoding Support

---

Need Help?

Contact us at contact@sebiulabs.co.uk

Website: sebiulabs.co.uk