How to: Configure Security, Network and Proxy Servers for Brandlive
Attendee Prerequisites
The following configurations are required for Brandlive attendees to successfully view webinars.
- Allow-list HTTPS traffic (TCP port 443) to the following hostnames:
*.brandlive.com
*.brand.live
*brnd.live
*.live-video.net
*.mux.com
(This enables basic attendee access to the Brandlive platform) - Disable any type of inspection for *.live-video.net and *.mux.com
(Inspection engines delay the timely delivery of live video segments enough to cause buffering)
(ZScaler implementations are very common now and also require inspection disablement) - Split-tunnel HTTPS traffic (TCP port 443) for *.live-video.net and *.mux.com
(This prevents traffic from being sent over VPN tunnels, leading to congestion and buffering) - Allow-list TCP port 1935 (RTMP) to *.brandlive.com
(This allows an encoder to directly stream into the Brandlive platform)
Presenter, Producer and Admin Prerequisites (Greenroom)
- Allow-list HTTPS traffic (TCP port 443) to the following hostnames:
*.brandlive.com
*.brand.live
*brnd.live
(This enables basic Presenter, Producer and Admin access to the Greenroom application) - Allow-list UDP ports 1025-65535 and TCP 443 traffic to the following hostnames:
*.tokbox.com
*.opentok.com
(This enables real-time communication for Presenters, Producers and Admins using Greenroom)
(WebRTC is the industry standard protocol for real-time communication)
(UDP is required for optimal performance. TCP 443 is only a fallback and will be suboptimal)
WebRTC (RTC for short) is the lowest latency protocol for real-time communication and requires rapid data transmission with direct paths between endpoints. Connection using TCP fallback will be functional, but performance will be degraded.
Proxy Requirements
If a proxy is required to access the internet from your office location, disable security inspections for live video delivery to attendees. WebRTC-based presenter connections will not work through a proxy, using either UDP or TCP. A proxy bypass is required for presenter, producer admin connections into Greenroom.
Using the latest versions of Chrome or Edge are optimal for performance and security.
Comments
Please sign in to leave a comment.