Firewall Port Tester Link

Firewall Port Tester

Click the link below and then enter the info in #1 and #2 as seen below. Once entered, then "Run Test".

http://cactus.jigsawinteractive.com/scanner/scanner.html

  1. Server url: amsstream.jigsawinteractive.com
  2. App instance: live
  3. Run Test

 

Disregard “failed” port 443 because Jigsaw does not tunnel RTMP over this port.

 

 


Jigsaw® is browser and firewall friendly, however, there may be times when personal or network settings require you to whitelist specific ports. Jigsaw has two types of traffic, general web page traffic, and streaming traffic for the live classrooms. Just like all other sites, our web pages use HTTP and HTTPS "protocols" (which just means the way in which the data being sent/received is organized). Our live classrooms use RTMP and RTMPT protocols. Typically, each protocol travels through pre-determined “ports” and these are:


The following IP Addresses/URLs should be "whitelisted" (allowed) in customer firewall...

52.5.119.47/32 - rtmp: 1935/tcp  *Flash Content (client application)

54.173.91.31/32 - rtmp: 1935/tcp  *Desktop Sharing - Jigsaw App

54.173.91.31/32 - webrtc: udp  *Desktop Sharing - Chrome Browser Extension

45.55.53.234/32 - turn: udp/tcp  *Desktop Sharing - Chrome Browser Extension

107.23.89.206 - http: 80/tcp  *Website

54.208.1.149 - https: 443/tcp  *Web Services (used by all)


IF you can use URL's in your firewall whitelist, we recommend using the following URL's instead of IP addresses:

 

https - 443/tcp

stream.jigsawinteractive.com

websvcstream.jigsawinteractive.com

logstream.jigsawinteractive.com

 

rtmp - 1935/tcp (or rtmpt over 80/tcp)

amsstream.jigsawinteractive.com


Areas That May Be Blocking Jigsaw


The first line of defense is the Firewall. The Firewall essentially "hides" the private network of the company from the Internet at large. It contains rules about what kind of traffic can pass through. The firewall is a very blunt weapon which either allows you to get through or it doesn't. Generally, if someone cannot get into a Jigsaw session, the solution is to add some exceptions to the Firewall to allow Jigsaw traffic to flow through unimpeded. To do this, the IT department must basic "whitelist" our server addresses. Doing this resolves 95% of network issues.

Please note, if you are trying to join a Jigsaw® session and see the session attempting to “authorize, set up connection, load, or disconnect” this is indicative of browser or network settings blocking the ports above.



The second line of defense is Packet Inspection. This device/application literally examines each piece of information coming in from the Internet to weed out any corrupt packets, attachments, or even networking protocols (certain types of traffic). Because very deep inspection can make things run very slowly, many companies do not employ one. This device is kind of like anti-virus for the network. In the case of Jigsaw, the packet inspection may look at the RTMP packets and block them. In this case the IT department would need to add exceptions for Jigsaw traffic to flow freely.



The third line of defense is the Proxy Server. This device/application puts itself between all users and the Internet and traffic passes through it (like a man-in-the-middle). Among many other things, it's job is to make sure that devious websites do not hi-jack your connection and begin taking you to places you never intended. They can also stop a website from allowing information from 3rd-party servers to come through with your web requests. Proxy servers are like a traffic cop that is watching the flow of traffic to ensure no highjacking takes place. Jigsaw is not "proxy aware" meaning a Proxy server can break certain functionality, mainly entering into the virtual classroom. The reason for this is that we use different servers at different IP addresses for the virtual classroom and also the classroom is running the RTMP/RTMPT protocol which is also not proxy-friendly.

Jigsaw has two parts, a regular web part (for setting up sessions), and an Adobe Media Server/Flash part for holding the live sessions. The "live sessions" part cannot be proxied, so you will need to add an exception for that traffic.

You should not proxy internet traffic flowing in/out of the following:
URL: amsstream.jigsawinteractive.com
IP: 52.5.119.47
Ports: 80/tcp and 1935/tcp

 


 

Messages That You Can't Get Past and What They Mean

 

 

If you cannot get past these messages, then your network is blocking access to Jigsaw. This could be due to a firewall, proxy server, or remote access such as a VPN.

 

Was this article helpful?
0 out of 6 found this helpful