Question:
What network settings are needed to configuration SnapStream to work correctly on my network?
Answer:
The SnapStream software uses the following ports for normal operation:
TABLE OF CONTENTS
- Required Ports
- Cloud Sharing
- Guide Data
- SnapStream Set-Top Boxes
- Social Media
- Other Features
- Domain and DNS
- Support Remote Access
Required Ports
| Ports 80 (HTTP) or 443 (HTTPS): | The SnapStream Web Interface can be hosted as non-SSL (80) and/or SSL (443). Integrated tuning will also communicate via HTTP or HTTPS (depending on configuration). The system administrator can choose to disable port 80 through the Microsoft IIS Administration Tool on the SnapStream Server. |
| Port (TCP) 1935: | For some thrid party encoders using RTMP (such as Osprey Talon encoders, used with SDI sources), outgoing port 1935 will be used. |
| Ports (TCP) 9090-9093: | Used for communication between SnapStream Cluster Nodes. |
| Port (TCP) 9190: | Used for programs written around the SnapStream API such as integrated tuning authentication, the Link Client Software, the Windows/Mac Web Players, and the DVD Burn Plugin. Clients will also need to be able to make outbound secure connections on this port for the scrolling transcript to work during playback. |
| Port (TCP) 9999: | Used for file access communication on both nodes and clients. |
 | If using a TCP stream from a SnapStream encoder to the SnapStream server, the TCP ports that need to be opened are determined by which ports are configured for each stream. |
Cloud Sharing
For Cloud Sharing to work, the SnapStream server will need to be able to access send data via HTTPS to the IPs labeled "us-east-1" here:
https://ip-ranges.amazonaws.com/ip-ranges.json
- More information about AWS IP ranges can be found here: http://docs.aws.amazon.com/general/latest/gr/aws-ip-ranges.html
- The SnapStream server also needs access to the following specific IP addresses.
- 54.211.50.126
- 18.215.20.127
- 3.218.168.6
- Cloud Sharing emails (and other emails sent by SnapStream) come from 208.117.59.145 (o1.ptr7702.snapstream.com).
Guide Data
SnapStream servers must have access to port 443 on the following websites in order to download Guide data.:
- snapstream.net (52.45.189.213)
- wsdl.snapstream.net (52.45.189.213)
- partners.snapstream.net (52.45.189.213)
- snapstream.com (34.193.204.92 or 34.193.69.252)
| Please note that these IP addresses are subject to change without notice. For this reason, we strongly recommend whitelisting the DNS name rather than the IP address. |
SnapStream Set-Top Boxes
SnapStream Set-Top Boxes will require access to the following:
- Port 443 on stb.snapstream.net
- Ports 9190, 443, and 80 on your SnapStream server
- NTP servers (1.android.pool.ntp.org, 2.android.pool.ntp.org, 3.android.pool.ntp.org)
- SnapStream Registration site: https://stb.snapstream.net/ on the server and STB. (Instructions to perform this test on the STB can be found here)
Social Media
Social media uploads to Twitter, Facebook and YouTube will require access to the corresponding domain.
Other Features
Some other non-essential software features (such as exporting to Amazon or Google Cloud Storage) may require access to specific websites. Please contact SnapStream Support for more information if you are using these features.
Domain and DNS
Some software features, including LDAP integration and the use of a UNC path as a video folder, require your SnapStream to be added to the domain.
We recommend creating a DNS entry for your SnapStream that is available to clients. This step improves playback performance.
Support Remote Access
In some case, it may be useful for SnapStream to access your system remotely. It is suggested to allow the LogMeIn URLs to ensure that a connection to all components of LogMeIn is permissible. The client-to-host connection uses peer-to-peer connections, encrypted within a 256-bit AES tunnel. The services themselves communicate using port 443 (HTTPS/SSL), so no additional ports need to be opened within a firewall.
Recommended URLs
- *.logmeinrescue.com
- *.logmeinrescue-enterprise.com
- *.LogMeIn123.com
- *.123rescue.com
- *.support.me
Please note that this also includes sub-domains for these domains, so it is advisable to use wildcard rules wherever possible when you whitelist or block any LogMeIn service on your network. Looking for IP ranges? LogMeIn's IP ranges change regularly. For best results, please whitelist the URLs shown above.
LMI Relay addresses
- ASH - relay01-01.logmein.com [69.25.20.1]
- LA - relay02-01.logmein.com [74.201.74.1]
- USIL - relay04-01.logmein.com [64.94.46.1]
- UK - relay03-01.logmein.com [77.242.192.1]
Other remote access utilities may be used according to your preferences and security needs. Please note that remote access by SnapStream support is NOT a requirement for the system to work.
Applies to Version:
All current versions