Information for IT Departments

Information for school and university IT Departments

In some educational institutions, local network settings may affect the way Sanako Connect works for teachers and students. We have created the document below to help you check if anything needs to be changed:

Open the full IT settings and Firewall settings instruction document here: Domains-and-ports-for-Sanako-Connect-New-WebRTC-Service-May-2022 (you can also find the same information summarised below).

 

Network, firewall, and proxy settings

The following domains and ports should be allowed to ensure that Sanako Connect works properly.

Domains:

  • *.sanako.com
  • *.connect.sanako.com
  • *.clientstream.launchdarkly.com
  • *.launchdarkly.com
  • *.ingest.sentry.io
  • fonts.googleapis.com
  • fonts.gstatic.com
  • api.rollbar.com
  • *.daily.co (Audio/video streaming)
  • *.wss.daily.co (Audio/video streaming)
  • prod-ks.pluot.blue (Audio/video streaming)
  • *.twilio.com (Audio/video streaming)
  • *.xirsys.com (Audio/video streaming)
  • sanako-connect-eu-production-beta.s3-accelerate.amazonaws.com (File transfer)
  • sanako-connect-us-production-beta.s3-accelerate.amazonaws.com (File transfer)

You’ll want to make sure you can access *.daily.co on port 443, as it’s used for a variety of fallback connection types.

If you have a VPN, audio/video streaming will have much better quality if you can configure streaming related traffic to bypass it. You can usually do that by configuring split tunneling. You’ll at least want to exempt port 443 for the Twilio IP ranges listed below, and possibly for the Xirsys IPs as well. If you can exempt UDP traffic altogether, that’s even better.

Twilio’s IP ranges: https://www.twilio.com/docs/stun-turn/regions

Xirsys’s IP ranges: https://docs.xirsys.com/?pg=ip-whitelist

If you have a firewall, you should allow UDP hole punching, which is essentially the standard behavior for most firewalls. If you’re explicitly allowing or denying UDP ports, you’ll definitely need to open port 3478 for signaling and media tunneling. You’ll also need to open UDP ports 40000-65534 for all hosts in order for peer-to-peer calls to work correctly.

Please see the following document for the ports that must be enabled for Sanako Connect to work properly: see IT and Firewall settings.