diff --git a/turnserver.md b/turnserver.md
index 02d20d1..97828af 100644
--- a/turnserver.md
+++ b/turnserver.md
@@ -29,8 +29,12 @@ see this issue with coturn: https://github.com/coturn/coturn/issues/268
 
 Next, we are going to open up some ports... just in case they are blocked by default. Which exactly? well, these are default ports. TCP may not be needed?
 ```
-sudo ufw allow 49000:65535/tcp
-sudo ufw allow 49000:65535/udp
+sudo ufw allow 3478/tcp
+sudo ufw allow 3478/udp
+sudo ufw allow 443/tcp
+sudo ufw allow 443/udp
+sudo ufw allow 49152:65535/tcp
+sudo ufw allow 49152:65535/udp
 ```
 Update turnserver.conf with passwords, domain names, and whatever else that needs changing.  Example contents are provided below.  Once you have updated it, start the TURN server and ensure it started correctly.
 ```
@@ -49,7 +53,7 @@ listening-port=3478
 ## TLS needs an SSL certificate and domain, but enables TCP
 tls-listening-port=443
 
-# min-port=49000
+# min-port=49152
 # max-port=65535
 
 realm=turn.obs.ninja