Enterprise HLS/DASH transmuxing with multi-DRM, DVR, catchup and live thumbnails at broadcast scale.
RTMP
SRT
UDP
HLS Pull
AES-128
EZDRM
DVR
Catchup
HLS
Output
DASH
Output
Multi
DRM
Auto
Recovery
Pravaah
Welcome back
Sign in to your operator console
Pravaah v1.0·Enterprise Edition
Dashboard
Channels
Live
Memory
CPU Cores
Uptime
Total Channels
Live Streams
License
Server Uptime
CPU
Memory
Disk
Network
Manage ingest sources. Each channel transmuxes to HLS + DASH.
Channel
Protocol
Resolution
FPS
Input Bitrate
Output Bitrate
DRM
DVR
Status
Actions
Loading…
Active transmux sessions. Shows real-time HLS and DASH output endpoints.
Stream Name
Status
DRM
HLS Output
DASH Output
Actions
No active streams
Content protection AES-128 per-stream encryption and EZDRM multi-DRM configuration.
AES-128 HLS Encryption
Native FFmpeg · Per-stream keys · Key rotation
Active
AES-128 encrypts every HLS segment with a unique key. The key is served by the built-in key server at /api/v1/keys/:stream_id. Set DRM Type to AES-128 on a channel to enable.
Per-stream 16-byte key
Random IV per stream
Key rotation API
iOS/Safari/Android native
EZDRM Multi-DRM
Widevine · PlayReady · FairPlay
Not Configured
EZDRM provides Widevine (Chrome/Android), PlayReady (Edge/Windows) and FairPlay (Safari/iOS) license delivery. Configure your EZDRM account credentials below to enable CENC encryption.
Widevine (Chrome · Android)
PlayReady (Edge · Windows)
FairPlay (Safari · iOS)
Single key ID management
EZDRM Configuration
AES-128 ConfigurationApplied to all new streams
Active Encrypted Streams
No active encrypted streams
Configure HTTP endpoints to receive real-time stream events. CMS gets notified instantly on stream start, stop, fail and restart.
Download daily log files Engine, Server and DRM events. New file created each day.
Engine Logs
FFmpeg output per day
Server Logs
API & system events per day
DRM Logs
Key events per day
Audit Logs
90 day retention · All management actions
Log Storage Info
Log Directory./data/logs
Retention30 days (auto-purge)
RotationDaily new file per category per day
Categoriesengine · server · drm
Capacity planning and live performance measurement for Pravaah.
Live System Benchmark
Click Run Benchmark to measure this machine's capacity
CPU Cores
CPU Usage
Memory
Est. Max Streams @ 70%
Based on current load
Capacity PlannerTheoretical calculation for any server
Max Streams (CPU bound)
Max Streams (Memory bound)
Recommended Max Streams
Memory Per Stream
FFmpeg + buffers
Calculation Assumptions
CPU per stream (transmux)~2–4% per core @ 1080p (no transcoding)
Memory per stream~150–300 MB (FFmpeg buffers + segments)
OS overhead~10% CPU, ~2 GB RAM reserved
Go server overhead~1% CPU, ~100 MB RAM
Network I/ONot calculated depends on NIC and bandwidth
Disk I/ONot calculated SSD recommended for segment writing
NoteTranscoding increases CPU by 10-20x these figures are for transmux only
Configure DVR/Catchup storage paths and browse recorded files.
Storage ConfigurationNot configured
Mount first →
Linux: sudo mount -t nfs 192.168.1.100:/share /mnt/nfs/pravaah
|
Windows: net use Z: \\server\share
Active storage:
Total
Free
Used
Channel Storage Summary
Loading…
File Browser
Select a channel above to browse files.
Server configuration, security and system management.
IP WhitelistDisabled
No IPs added yet all IPs allowed
Supports exact IPs (10.0.0.1) and CIDR ranges (192.168.1.0/24)
Whitelist Enabled
⚠ Your IP is auto-added when enabling
Your IP:
Rate LimitingEnabled
API Requests / Minute per IP
Login Attempts / Minute per IP
Stream Requests / Minute HLS/DASH per IP
Lockout Duration after failed logins
Rate Limiting Enabled
Current: tracked IPs · locked IPs
TLS / HTTPS ConfigurationDisabled
TLS Mode
Disabled
HTTP only
Self-Signed CA
On-premises / Testing
Let's Encrypt
Public domain required
Manual
Upload your own cert
Organization Name
Country Code 2 letters
Valid For
Server Host / IP hostname or IP address
HTTPS Port
Domain Name must point to this server's public IP via DNS
HTTPS Port
Requirements:
• Domain DNS must point to this server's public IP
• Port 80 must be publicly accessible (for ACME HTTP-01 challenge)
• Port 443 must be open for HTTPS traffic
• Certificate is auto-issued and renews automatically before expiry
• Free certificates from Let's Encrypt trusted by all browsers